none
DNS中的解析问题! RRS feed

  • 问题

  • 现在我的内部有一台DNS,跟AD装在一台机器上。现在出现的问题是,有时可以解析内部的域,有时解析不了,(总是一会可以,一会不可以,很郁闷。)解析外部都没有问题。如果解析不了时,ipconfig /flushdns问题就解决了,如果这样不行时,就要重启网卡才行。最近很频繁。而且在日志里,时不时的会出现下面这个报错。


    DNS Server has updated its own host (A) records. In order to insure that its DS-integrated peer DNS servers are able to replicate with this server, an attempt was made to update them with the new records through dynamic update. An error was encountered during this update, the record data is the error code.

    If this DNS server does not have any DS-integrated peers, then this error should be ignored.
    If this DNS server's ActiveDirectory replication partners do not have the correct IP address(es) for this server, they will be unable to replicate with it.

    To insure proper replication:
    1) Find this server's ActiveDirectory replication partners that run the DNS server.
    2) Open DnsManager and connect in turn to each of the replication partners.
    3) On each server, check the host (A record) registration for THIS server.
    4) Delete any A records that do NOT correspond to IP addresses of this server.
    5) If there are no A records for this server, add at least one A record corresponding to an address on this server, that the replication partner can contact. (In other words, if there multiple IP addresses for this DNS server, add at least one that is on the same network as the ActiveDirectory DNS server you are updating.)
    6) Note, that is not necessary to update EVERY replication partner. It is only necessary that the records are fixed up on enough replication partners so that every server that replicates with this server will receive (through replication) the new data.

    2009年1月15日 2:26

全部回复

  • 您好! 

     

    为了更好地分析该问题,请您帮忙提供以下信息:

    1. 在域中有几台域控制器和DNS服务器?

    2. 出现问题之前,您是否执行过移除域控制器等相关的操作?

     

    根据现有的信息,我建议您做以下操作:

    1. 打开DNS管理控制台,察看是否有错误的A记录,如果有的话请删除。

     

    2. 使用ipconfig/flushdns命令,刷新DNS缓存。使用ipconfig /registerdns重新注册DNS区域文件中的A记录。

     

    3. 使用Net stop netlogonNet start netlogon命令,重启Netlogon 服务。

     

    希望我的回答对您有所帮助,如果有不清楚的地方,请告诉我。

     

    Tom Zhang 张一平

    2009年1月15日 9:30
    版主
  • 谢谢回复;

     

    1、在我们域中有4台DC,1台DNS;

     

    2、之前没有移除过域控制器的相关操作;

        只是原来DNS二级域名解析直接授权到这台服务器,这台服务器"AD+DNS+Exchange",有两块网卡,一公网IP,一私用IP,为了在外部解析不显示内部IP时。上星期我把二级域名权限到另一台机器,然后建了一条A记录和MX记录,指到这台机器上。

     

    3、里面好像有好多原来的A记录,现在还存在。

     

    4、不知道为什么现在在内部使用时,有时可以正常解析内部的记录,有时无法解析,如果不执行:ipconfig  /flushdns或者重启网卡,过一会自己又好了。

    谢谢!

    2009年1月15日 9:47