Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
Question
Thursday, March 23, 2017 3:56 PM
Hi,
we have about 8 sites and on one of the sites, the PTR records are not being created for the clients (Windows 7).
DHCP (Windows Server 2012 R2 Domain Controller) is taking care of updating DNS:
Always dynamically update DNS Records is enabled, even as Discard A and PTR records when lease is deleted.
On other sites it's working like a charm.
When I look at the DHCP logging on the site where we have the issue, I don't see DNS Update Request or DNS Update Successful, whereas on other sites I see them appearing in the DHCP logs, so it looks like DHCP isn't handling the registering.
I read some articles stating that you should use dnsUpdateProxy group, but as far as I know, this isn't needed when DHCP / DNS is running on a DC; also the fact that I'm not using it on other DHCP servers where it is working ok tells me this isn't the issue.
Any idea?
Kind Regards,
Mario
All replies (11)
Thursday, March 23, 2017 4:24 PM
Are ptr records in other reverse lookup zones updated?
Is your ptr zone /24 or may be it is classless? It is not possible to perform dynamic updates of DNS records on a classless reverse lookup zone.
Thursday, March 23, 2017 6:28 PM
Are ptr records in other reverse lookup zones updated?
Is your ptr zone /24 or may be it is classless? It is not possible to perform dynamic updates of DNS records on a classless reverse lookup zone.
Hi,
we have one ptr zone, which is /24, other subnets register the ptr records ok, so it's only one dhcp server in one site which has the issue of not registering ptr records.
Kr,
Mario
Friday, March 24, 2017 3:09 AM
Hi mwillart,
1. Please ensure the corresponding Reverse lookup zone is created on the DNS server;
2. If the dynamic update type is "Secure only", please add the DHCP server to DnsUpdateProxy group; check if adding the DHCP server to the group could work.
Best Regards,
Anne
Please remember to mark the replies as answers if they help.
If you have feedback for TechNet Subscriber Support, contact [email protected].
Friday, March 24, 2017 8:30 AM
Hi mwillart,
1. Please ensure the corresponding Reverse lookup zone is created on the DNS server;
2. If the dynamic update type is "Secure only", please add the DHCP server to DnsUpdateProxy group; check if adding the DHCP server to the group could work.
Best Regards,
Anne
Please remember to mark the replies as answers if they help.
If you have feedback for TechNet Subscriber Support, contact [email protected].
The reverse lookup zone has been created, devices on other sites get their ptr records, it's only one site where it doesn't work.
Dynamic update is set to nonsecure and secure.
Do you think it still would help adding the specific DHCP server to th DnsUpdateProxy group? It is a domain controller and I can see that the Enterprise Domain Controllers group has access to the reverse lookup zone.
Kr,
Mario
Friday, March 24, 2017 10:41 AM
Update
I just enabled the option Use the DNS suffix of this connection on a client in the subnet that has the issue with not registering PTR records and after a reboot, I see a succesful registration of the PTR record.
This shows that registration isn't handled by the DHCP server but actually by the client itself.
Looking at the settings of the DHCP scope, this should be done by the DHCP Server:
This is also confirmed by the logging of the specific DHCP server:
In this logging I miss entries like DNS Update Request and DNS Update Successful.
Kr,
Mario
Tuesday, March 28, 2017 1:56 AM
Hi mwillart,
Glad to hear it works and thanks for your feedback. Then, you may mark your reply as answer.
Best Regards,
Anne
Please remember to mark the replies as answers if they help.
If you have feedback for TechNet Subscriber Support, contact [email protected].
Tuesday, March 28, 2017 6:47 AM
Hi mwillart,
Glad to hear it works and thanks for your feedback. Then, you may mark your reply as answer.
Best Regards,
Anne
Please remember to mark the replies as answers if they help.
If you have feedback for TechNet Subscriber Support, contact [email protected].
Hi,
in my opinion it doesn't work yet as it should, as I would expect that the DHCP server would handle the DNS registration, as this is also done so in the other sites.
Kind Regards,
Mario
Tuesday, March 28, 2017 6:59 AM
Do you have 0x15 (Domain Name) option for this scope?
Also you can set DNS-suffix list with group policy.
Tuesday, March 28, 2017 9:35 AM
Do you have 0x15 (Domain Name) option for this scope?
Also you can set DNS-suffix list with group policy.
Hi,
Yes, we have scope option 15 filled in with our fqdn.
I know you can set the DNS suffix with a GPO, the only strange thing is that it works on other sites, and there we also don't set the suffix at the moment.
Kr,
Mario
Monday, April 3, 2017 6:50 AM
Hi mwillart,
In order to troubleshoot the issue deeply, we may use network monitor to capture the traffic to look into the progress.
https://www.microsoft.com/en-us/download/details.aspx?id=4865
Best Regards,
Anne
Please remember to mark the replies as answers if they help.
If you have feedback for TechNet Subscriber Support, contact [email protected].
Monday, April 3, 2017 11:54 AM
Hi mwillart,
In order to troubleshoot the issue deeply, we may use network monitor to capture the traffic to look into the progress.
https://www.microsoft.com/en-us/download/details.aspx?id=4865
Best Regards,
Anne
Please remember to mark the replies as answers if they help.
If you have feedback for TechNet Subscriber Support, contact [email protected].
Hi,
I already did some network monitoring with WireShark:
148 Dynamic update 0x504f SOA <domain> CNAME AAA A A <ip address>
Here I'm missing the dynamic update of the PTR record, which I do see on other sites where registration is working well:
166 Dynamic update 0x516b SOA xxx.xxx.in-addr.arpa CNAME PTR PTR <pc name>.<domain>
Is this enough info?
Best Regards,
Mario