Announcement

Collapse
No announcement yet.

Disappearing host records in AD integrated DNS

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • Disappearing host records in AD integrated DNS

    Hello,

    I need some help with troubleshooting this issue.
    We are running two W2k3 AD integrated DNS servers. Couple days ago I noticed that some host records disappeared from forward lookup zone but PTR records still available for those nodes. This issue is only affects hosts in 10.1.3.0/24 network. All of the A host records created manually. I tried to add host records in manually, and after they replicated to another server 15 minutes later, those host records disappeared. I also enabled Auditing on forward lookup dns zone.

    This issue already happened once before when scavenging was turned on and was resolved by running:
    repadmin /RemoveLingeringObjects <DCName> <DCGUID> DC=DomainDNSZones,DC=Domain,DC=com
    on DNS servers.


    I see this event in event viewer and after that that host record is no longer available:

    Event Type: Success Audit
    Event Source: Security
    Event Category: Directory Service Access
    Event ID: 566
    Date: 8/27/2009
    Time: 10:53:04 PM
    User: NT AUTHORITY\SYSTEM
    Computer: BMW
    Description:
    Object Operation:
    Object Server: DS
    Operation Type: Object Access
    Object Type: dnsNode
    Object Name: DC=server1ilo,DC=Domain.com,CN=MicrosoftDNS,DC=Dom ainDnsZones,DC=Domain,DC=com
    Handle ID: -
    Primary User Name: BMW$
    Primary Domain: DOMAIN
    Primary Logon ID: (0x0,0x3E7)
    Client User Name: MCDONNELL$
    Client Domain: DOMAIN
    Client Logon ID: (0x0,0xBD92E4E)
    Accesses: Write Property

    Properties:
    Write Property
    Default property set
    dnsRecord
    dNSTombstoned
    dnsNode

    Additional Info:
    Additional Info2:
    Access Mask: 0x20


    My question is why would NT AUTHORITY\SYSTEM would remove A Host record from dns?


    Thank you for the help.

  • #2
    Re: Disappearing host records in AD integrated DNS

    I would say they are somehow tombstoned.
    I have found this article so please check it:

    http://support.microsoft.com/kb/248047
    The chase is better than the catch

    Comment


    • #3
      Re: Disappearing host records in AD integrated DNS

      ip2host,
      Thank you for the information. I will review that article. My missing dns records are back. I noticed that TTL was different compare to other records it was set at 3min20sec. By default ttl is set at 1hour.
      Thank you.

      Comment

      Working...
      X