I am Facing a DNS Issues Mentioned Below

Question

Dear Community,

We have below Issues with DNS Server:
We have Total 4 Sites:

1.HO(Head Office)
2.NRA
3.JRN
4.CH

We have total 4 Domain Controllers, one at each site with DNS & DHCP Service at Every DC installed as well.

Issue#1 This is the issue witnessed at only Head Office. Whenever we rejoin a Machine to domain with new name like we rename the old name, the internet doesnot work and when we check from back-end, it starts Showing 2 DNS Entries and If we Ping the Machine It shows Old DNS Entry, what we do is that we delete the older entry and then reboot the affected machine and then Internet starts working on the Machine.

Can Anyone Suggest me why this issue is happening, as it is happening really frequently.

We have Windows Server 2019 installed on all Sites.

Answer 1

Hi Seema,

The classic case of Dynamic DNS, you will need to check the settings if clients can update the DNS records and has appropriate permissions to update/modify the DNS records. If the IP address assignment is via DHCP you can configure in DHCP that clients will have updated DNS records.

Check this detailed article on this - configure-dns-dynamic-updates-windows-server-2003

==
Please "Accept the answer" if the information helped you. This will help us and others in the community as well.
----
Please don't forget to upvote and Accept as answer if the reply is helpful

Answer 2

Hi @Seema Kanwal Gurmani

It sounds like your firewall\proxy is doing a reverse name lookup of the workstation to verify the connection. As you you have two DNS entries for a machne, the IP addresses don't match and as a result the firewall\proxy is blocking the connection until you delete the old DNS entry. As Jimmy has suggested you will need to update your DHCP and client configuration to make sure that the clients are updating existing DNS records.

Also review this article which contains additional information on how to configure DHCP updates.

https://blogs.msmvps.com/acefekay/2016/08/13/dynamic-dns-updates-how-to-get-it-to-work-with-dhcp-scavenging-static-entries-their-timestamps-the-dnsupdateproxy-group-and-dhcp-name-protection/

Gary.

Answer 3

Hello there,

Before joining the computer to the domain, make sure that you have cleared all mapped connections to any drives.

Restart the computer that you are trying to join to the domain to make sure that there are no latent connections to any of the domain servers.

Verify that the computer can reach a DNS server that hosts the DNS zone of the target domain or can resolve DNS names in that domain. Make sure that the correct DNS server has been configured on this client as the preferred DNS, and that the client has connectivity to that server. To verify this, you can run one of the following commands:

nltest /dsgetdc:<netbios domain name>/force

Try setting a static IP address as a test, and use your Dns server with a secondary being 8.8.8.8. You may may want to run gpupdate if your domain connects through a proxy, or gets firewall settings from a gpo.

---------------------------------------------------------------------------------------------------------------------------------

--If the reply is helpful, please Upvote and Accept it as an answer--