How to perform DNS health check on windows server 2019

Hriday Saha 46 Reputation points
2023-08-03T06:07:34.0433333+00:00

I have a DNS server (Windows server 2019) in my current infrastructure. i wanted to perform Health check of this server in terms of DNS service. is there any process or script that we can follow during that. Need your help on this.

Thank you!

Windows Server
Windows Server
A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.
12,205 questions
Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
5,932 questions
0 comments

3 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Vahid Ghafarpour 18,370 Reputation points
    2023-08-03T07:13:01.41+00:00

    It depends on the services that you enable on the DNS Server.

    You can create a PowerShell script to automate some of these checks.

    For example, you can use PowerShell cmdlets like Test-NetConnection, Resolve-DnsName, and Get-WinEvent to perform some of the checks programmatically.

  2. Limitless Technology 43,966 Reputation points
    2023-08-03T08:35:28.4866667+00:00

    Hello there,

    Performing a DNS health check on a Windows Server 2019 involves several steps. Here's a guide on how to do it:

    Check DNS Service Status:

    Ensure that the DNS service is running. To do this:

    Press Win + R, type services.msc, and hit Enter.

    Look for the "DNS Server" service in the list, and check its status. It should be "Running."

    Verify DNS Zones:

    Check if all DNS zones are present and properly configured.

    Open the DNS Manager: Press Win + R, type dnsmgmt.msc, and hit Enter.

    Expand your server node and check the "Forward Lookup Zones" and "Reverse Lookup Zones" for your DNS zones.

    Check DNS Records:

    Ensure that all required DNS records are present and correct.

    Look for essential records like A, AAAA, CNAME, MX, PTR, etc., and verify their settings.

    Check DNS Server Event Logs:

    Check the event logs for any DNS-related errors or warnings that might indicate issues.

    Go to Event Viewer (Press Win + R, type eventvwr.msc, and hit Enter).

    Navigate to Windows Logs > System and look for events with the Source "DNS Server."

    DNSSEC (Domain Name System Security Extensions):

    If you're using DNSSEC, verify its status.

    Open the DNS Manager, right-click on your server node, and select "Properties."

    Go to the "DNSSEC" tab and check the DNSSEC status.

    DNS Cache:

    Check the DNS cache to ensure that it's not causing any problems.

    Open Command Prompt or PowerShell as an administrator.

    To display the current DNS cache entries, run the command: ipconfig /displaydns.

    To flush the DNS cache, run the command: ipconfig /flushdns.

    DNS Diagnostics (Optional):

    Windows Server 2019 includes built-in DNS Diagnostics that can help troubleshoot issues.

    Open Command Prompt or PowerShell as an administrator.

    Run the command: dnscmd /Diagnose to perform DNS diagnostics.

    I used AI provided by ChatGPT to formulate part of this response. I have verified that the information is accurate before sharing it with you.

    Hope this resolves your Query !!

    --If the reply is helpful, please Upvote and Accept it as an answer--

  3. Dave Patrick 426.1K Reputation points MVP
    2023-08-06T12:43:10.36+00:00

    You can use dcdiag

    https://learn.microsoft.com/en-us/windows-server/administration/windows-commands/dcdiag#dns-test-syntax

    --please don't forget to upvote and Accept as answer if the reply is helpful--