Share via

Root zone on this DC/DNS server was not found

techcoor 1,266 Reputation points
2021-05-08T22:20:18.32+00:00

Ran dcdiag :test:dns /v /s:DC1

Get Root zone on this DC/DNS server was not found.

Is there a problem?

Windows for business | Windows Server | User experience | Other
0 comments
Accepted answer
  1. techcoor 1,266 Reputation points
    2021-05-10T04:28:51.573+00:00

    I did not see anything when looking at your first link other than that is normal to have the Root zone on this DC/DNS server was not found message

    I decided to take the opposite approach and look for when DNS is the root server.
    I found https://securitytrails.com/blog/dns-root-servers that explains:
    When researching the answer to this question we often see the number 13 pop up. So, you may ask, why are there only 13 root servers?

    It’s because of the limitations of the original DNS infrastructure, which used only IPv4¹ containing 32 bytes. The IP addresses needed to fit into a single packet, which was limited to 512 bytes at that time. So, each of the IPv4 addresses is 32 bits, and 13 of them come to 416 bytes, leaving the remaining 96 bytes for protocol information.

    Before, there was only one single server for each of the 13 IP addresses, while today we have a server cluster for each of them—creating a network of hundreds of servers all around the world which use anycast routing. This helps balance their decentralization and ensure reliability even if one of the root servers becomes unavailable due to, for example, a DDoS attack or any other type of DNS attack.

    The answer seems to be that a DNS root server is a master server out on the Internet and I would not likely have a DNS root server so I can ignore the message.

    2 people found this answer helpful.
    0 comments

2 additional answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Anonymous
    2021-05-10T03:36:04.433+00:00

    Hello @techcoor ,

    Thank you for posting here.

    I have done a test in my lab and I had the same result as you (no matter run the command on PDC or BDC).
    95009-dns.png

    It means your DNS server is not a root server, there is no root zone on this DNS server.

    Similar case:
    SOA FOUND, but Root zone on this DC/DNS server was not found.
    https://social.technet.microsoft.com/Forums/windowsserver/en-US/7e328d0d-cec1-4ac3-8d2d-ec34d66a2a39/soa-found-but-root-zone-on-this-dcdns-server-was-not-found?forum=winserverDS

    Reference:
    DNS root zone
    https://en.wikipedia.org/wiki/DNS_root_zone

    Hope the information above is helpful.

    Should you have any question or concern, please feel free to let us know.

    Best Regards,
    Daisy Zhou

    ============================================

    If the Answer is helpful, please click "Accept Answer" and upvote it.

    0 comments
  2. Anonymous
    2021-05-10T04:33:46.41+00:00

    Hello @techcoor ,

    I am so glad to receive your reply.

    Based on the description "The answer seems to be that a DNS root server is a master server out on the Internet and I would not likely have a DNS root server so I can ignore the message.", I think you are right.

    Should you have any question or concern, please feel free to let us know.

    Best Regards,
    Daisy Zhou

    ============================================

    If the Answer is helpful, please click "Accept Answer" and upvote it.

    0 comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.