DNS replicating but not being dynamically updated by other DCs

Background on setup:
Our campus runs BIND for the DNS solution
Campus servers do not allow for dynamic updates of the root zone (school.university.edu), but are set to allow dynamic updates of the AD-related zones (_msdcs, _sites, _tcp, _udp, DomainDnsZones, ForestDnsZones)
We run Active Directory (2008R2/2012R2 Mixed Mode) with DNS
Our DCs are all listed in the NS tab of our zones, but are not truly authoritative...campus BIND servers are
We only have the default zones setup in our DNS, all allow for Dynamic updates (Secure Only)
DNS zones are ADI and replicate to all DNS servers in the domain (All 6 DCs are DNS servers)
Clients do not register with our DNS, they use the campus BIND servers.  Only AD domain controllers are registered in our zones and allowed to dynamically update
Once upon a time, this setup worked without an issue.  Dynamic updates worked without an issue within our ADI zones, as well in the campus BIND servers.  When we started to add the new 2012R2 domain controllers into the mix, we noticed that this
was no longer the case.  Since we don't often add or remove DCs from our setup, we do not know exactly when this broke.
The issue is that our campus BIND DNS servers show all of the appropriate DNS records flawlessly.  We manually requested entries at the root (looks fine) and all AD zones updated dynamically with all expected records.  Our AD DNS servers on the
other hand have a fair number of incorrect and missing records.  The only one of the three new servers to have records in our AD DNS is the server we moved all of our FSMO roles to before our technician noticed the DNS issues.  The other two have
no records dynamically generated in our AD DNS zones.  We pulled one of the old 2008R2 DCs out of the domain using dcpromo since it had some other issues.  As expected, it pulled all of its records out of campus BIND cleanly but left all of its records
in our AD DNS.
If we manually add/remove an entry (PTR, CNAME, A, SRV), the change replicates appropriately across the domain.  However, we do not want to put a Band-Aid fix on this and manually enter all of the records.  We want to figure out why these two servers
are not pushing their records into AD DNS despite updating them flawlessly in campus BIND servers.
DNS is not my forte, so I'd welcome any advice on what I can as my best next steps.  I have played around a lot with modifying DNS servers listed in the DC network settings, and register this connection.  We can confirm that replication seems to
be working fine.  We can manually add records.  DNS shows no errors in event log.  When using dcdiag dns test, it shows that we have missing records in our DNS but no other issues are displayed.  NSLOOKUP reveals campus DNS to be correct. 
Any assistance would be appreciated...even if just to point me to a better tool for diagnostics.  We have not yet tried reinstalling DNS on any of the DCs and wish to avoid that if possible.

Greg:
Thank you for taking the time to respond.  I believe I have found a pseudo-solution earlier this week, but I find myself slightly confused by the solution.  On our network connections for the DCs, we had been making the BIND servers the primary
and secondary DNS servers, then each of our DCs point to two of the other DCs for their tertiary and quaternary DNS servers.  Since the BIND servers have all of the correct records, we flipped those to make the DCs our primary and secondary before BIND
servers.  This got all of the records into our AD correctly.
It was my understanding that if you checked the "Register this connection in DNS" checkbox that it would register itself in all of the DNS servers in the list, but based off the above it seems it only registers in the first DNS server it successfully connects
to; assuming it expects that primary server to replicate the records to others.  If this new assumption is true, then I am trying to figure out how I am supposed to get my DCs to dynamically update both AD-DNS and BIND when I make changes.  This
may be best suited in another thread, so I'll gladly break it out into another if needed.  I do not have control over the BIND DNS servers, except for the fact that my DCs are allowed to dynamically update the AD subzones.  I have full control over
my AD-DNS, but my clients computers are required to point to BIND for their DNS.

Similar Messages

  • Check this fix:  If nano is recognized by WinX, but not by iTunes/Updater

    I'm just posting this here because it took me a long time to dig up this fix. This problem appears with both windows 2000 and XP that I know of. Since windows is installed on my D: drive, when I plug in my nano, it kept being mapped to C:
    It worked fine as a mass storage device, but iTunes/Updater wouldn't recognize it. I (like everyone else) tried the 5 R's, yada yada, but it turns out I needed to change the drive letter to anything other than C. Bingo, that was all. The steps are here: http://docs.info.apple.com/article.html?artnum=93499
    I hope this bump helps some of you.

    hiya!
    okay, we'd better check on the usual suspects.
    first have a look inside your "My Computer". is the ipod showing up in there?
    if it isn't, see:
    Windows confuses iPod with network drive and may keep iPod from mounting or songs may seem to disappear
    iPod missing in "My Computer" or in iTunes on Windows
    if it is, see:
    iPod for Windows: Fast user switching in Windows XP is not supported
    iPod shows up in Windows but not in iTunes
    love, b

  • Why are clipping adjustments in the basic panel not being saved, updated or shown in the histogram? I am using LR 5.7 on a MAC OSX 10.8 etc.

    Why are clipping adjustments in the basic panel not being saved, updated or shown in the histogram? I am using LR 5.7 on a MAC OSX 10.8 etc.

    Here is more information and hopefully a better explanation. My version of
    LR-5.7 (OS X 10.8.5) apparently does not save the .NEF (Nikon RAW) edits
    done in the basic module. That means that I can correct exposure,
    highlights, shadows etc. but once I go to another picture and returned to
    the edited one the histogram (on the edited photo) and specifically the
    clipping triangles are white or some other color. This is normally suppose
    to indicate that some channel or all channels are clipped in the
    highlight/shadow areas. If I adjust any slider in the Basic panel even as
    little as one +/- value or press the J-key, the histogram will now show the
    original edit. Moving on to another photo and then returning to to
    previously edited one and again the edits are "not saved" and I have to hit
    the J-key or adjust a slider to see the previously edited information
    reflected in the histogram.
    This is especially frustrating for fours reasons. If I have edited a shoot
    and return to it I cannot see from the clipping information whether the
    original edit was correct and of course I might re-edit it (to some now
    incorrect value). This brings up the second issue synchronization. I can't
    rely on it because if I go back to fine tune a specific image in the batch
    the triangles are white or some other color for that and every image. I have
    to hit the J-key to show/hide clipping or the back slash key to see
    before/after previews. This is the third issue which is very time consuming
    and inefficient regarding my workflow. The forth issue is that I have
    noticed that normally when an image is saved in PS, LR adds a copy of the
    saved version to its catalogue. I have noticed that the PS to LR saves are
    all wrong in terms of exposure (they are much lighter in tone) than the
    original LR edit and the PS edit on my screen. If I check the PS to LR photo
    in LR I notice that the Basic panel values have been changed and that I have
    to sync the image with the originally edited RAW/NEF LR file to get it to
    look the same.
    Note 1). I am using an Apple cinema display and a calibrated Eizo ColorEdge
    monitor to view my NEF files. I have reverted back to using LR 4 however I
    am not sure if I should expect compatibility problems with Camera Raw 7.4 in
    LR 4 vs. Camera Raw 8.6 in LR 5.
    Note 2.) I am going to do an import converting everything to .dng  to see if
    this is a work around.
    Note 3). I would be interested in knowing if this issue is related to the PS
    RAW engine ver. 8.6, the Adobe created NEF calibrations or LR 5.
    Note 4). I have duplicated this issue in OS X 10.8.5, OS X 9.xx and OS X
    10.10.1
    Hopefully someone else has noticed this problem. Any shared information
    would be valuable. Thanks for the reply.

  • Data source was activated and replicated but not showing up in RSA7.

    Hello,
    Data source was activated and replicated but not showing up in RSA7.  At what point does the data source appear in the Delta Queue?
    Thanks

    Hi,
    for LO,LIS,generic,FI data sources, delta records come from delta queue.
    if u run the INIT in BW whether it may be success or not delta queue will be maintained in RSA7. and u can check the records in RSA7 or smq2.
    when the init request goes to R/3 then it will maintains delta queue in RSA7.
    assign points if it helps,
    thanks,
    pavan.

  • I've updated to iOS 7 on various devices but non of them will play videos that I've uploaded to shared photo streams. They play on the device I've uploaded them with but not on any of my other devices on anybody I've shared with.

    I've updated to iOS 7 on various devices but non of them will play videos that I've uploaded to shared photo streams. They play on the device I've uploaded them with but not on any of my other devices on anybody I've shared with.

    You would lose photo stream photos older than 30 days from your my photo stream folder.  Tto keep them save them to the camera roll first.  To do this in iOS 7, open your my photo stream alburm, tap Select, tap the photos, tap the share icon on the lower left, then tap Save to Camera Roll.
    The photo streams from others should reappear when you turn it back on.  Worst case, the owners of the shared photo streams would have to re-invite you.

  • I have completed the OS X upgrade, restart etc. but when attempting to update 8 other Apps to X I get this message: WE COULD NOT COMPLETE THIS UPDATE  Failed to verify the preflight file. It is not signed by Apple?

    I have completed the OS X Maverick upgrade, restart etc. but when attempting to update 8 other Apps to X Maverick I get this message:
    WE COULD NOT COMPLETE THIS UPDATE
    Failed to verify the preflight file. It is not signed by Apple.
    Help!

    Similar threads solve this problem by either creating a new administrator identity, which allows one to update applications, or changing the keychain prefs to Best attempt.  My issue was solved by adding a new admin user, and then updating the apps from the App store using the new identity.  Under my orginal user identity the keychain app would crash when I attempted to open Prefs.  After creating a new identity and updating the applications (iPhoto, etc) I found I was able to open the keychain Prefs logged into my orginal identity.

  • I am wanting to print my iCal calendar, as use it for bookings but not include entries calendar from other people who I've synced with.

    I am wanting to print my iCal calendar, as use it for bookings but not include entries calendar from other people who I've synced with.

    GACU,
    OK, now I think I understand your problem.
    If it is your calendar that is being shared with other users who have been granted editing priviliges, you will not be able to exclude those events from printing.

  • My kids share use my apple id for their ipods.  Now I'm getting an ipad and wondering if I should get a new id (they don't want to start over).  Can we share but not have to see each other's apps, contacts, etc?

    My kids use my apple id for their ipods.  Now I'm getting an ipad and wondering if I should get a new id (they don't want to start over).  Can we share the id (my email address) but not have to see each other's apps, contacts, etc?  I'd rather share I think, but don't want to create a nightmare for myself.  Also, I already have a kindle app (with purchased content) for my computer - does getting a new id for itunes change my ability to access my kindle account on my ipad?   Thanks!

    So first I'd say that it's not a good idea to start a new apple id if you have a large purchase history.  You may not transfer purchases between apple IDs.  You should consider some other options listed here http://support.apple.com/kb/HE37  Primarily the option where you or your children have seperate icloud accounts/email accounts that sync their contacts apart from yours.  You may use your apple ID for purchases and use a different one for icloud/email/etc.

  • Data Services job rolling back Inserts but not Deletes or Updates

    I have a fairly simple CDC job that I'm trying to put together. My source table has a record type code of "I" for Inserts, "D" for deletes, "UB" for Update Before and "UP" for Update After. I use a Map_CDC_Operation transform to update the destination table based on those codes.
    I am not using the Transaction Control feature (because it just throws an error when I use it)
    My issue is as follows.
    Let's say I have a set of 10,000 Insert records in my source table. Record number 4000 happens to be a duplicate of record number 1. The job will process the records in order starting with record 1 and begin happily inserting records into the destination table. Once it gets to record 4000 however it runs into a duplicate key issue and then my try/catch block catches the error and the dataflow will exit. All records that were inserted prior to the error will be rolled back in the destination.
    But the same is not true for updates or deletes. If I have 10000 deletes and 1 insert in the middle that happens to be an insert of a duplicate key, any deletes processed before the insert will not be rolled back. This is also the case for updates.
    And again, I am not using Transaction Control, so I'm not sure why the Inserts are being rolled back, but more curiously Updates and Deletes are not being rolled back. I'm not sure why there isn't a consistent result regardless of type of operation. Does anyone know what's going on here or  what I'm doing wrong/what my misconception may be?
    Environment information: both source and destination are SQL Server 2008 databases and the Data Services version we use is 14.1.1.460.
    If you require more information, please let me know.

    Hi Michael,
    Thanks for your reply. Here are all the options on my source table:
    My Rows per commit on the table is 10,000.
    Delete data table before loading is not checked.
    Column comparison - Compare by name
    Number of loaders - 1
    Use overflow file - No
    Use input keys - Yes
    Update key columns - No
    Auto correct load - No
    Include in transaction - No
    The rest were set to Not Applicable.
    How can I see the size of the commits for each opcode? If they are in fact different from my Rows per commit (10,000) that may solve my issue.
    I'm new to Data Services so I'm not sure how I would implement my own transaction control logic using a control column and script. Is there a guide somewhere I can follow?
    I can also try using the Auto correct load feature.  I'm guessing "upsert" was a typo for insert? Where is that option?
    Thank you very much!
    Riley

  • When trying to update and install Mountain Lion's 10.8.3 update from 10.8.2, the App Store will restart my computer but not install the update.  Any ideas on how to update my Macbook Pro 15" from 2008?

    I was wondering, does anyone have an idea on how to update my Macbook Pro 15" to Mountain Lion's 10.8.3 from Mountain Lion's 10.8.2 version?  When I attempt to use the App Store, it will restart my computer but it will not install the update.  The update also still shows up in the App Store as available and when going to "About my Mac," it still shows the current version being 10.8.2.
    Computer:
    Macbook Pro 15" Aluminum Body
    Purchased Late 2008
    Current OS: Mountain Lion 10.8.2
    Original OS: Leopard

    I will be attempting this fix this fix tonight:
    https://discussions.apple.com/message/21529499#21529499

  • Non-Admin not being shown update button on XP

    Non-Admin users on XP are not being shown the option to trigger an update.
    The mozilla update service is installed but as normal users aren't able to start the update process it never gets as far as starting it.
    When a new update is available a link to the download page is shown in the About box rather than a button to start the update.

    That is good. It would be better if that were the case with a standard account on Mac OS. I can no longer trust that button because it will start downloading an update if there is one, even though I disabled Firefox updates completely.

  • Tomcat  5.5.26 Sessions getting replicated but not working via browser

    Hi,
    I have configured Tomcat 5.5.26 to be clustered across 2 machines with one instance on each. These two machines are behing a BIG-IP loadbalancer which is setup for sticky sessions.
    The catalina.out states that the member can see each other:
    Jul 3, 2008 6:33:50 PM org.apache.catalina.cluster.tcp.SimpleTcpCluster memberAdded
    INFO: Replication member added:org.apache.catalina.cluster.mcast.McastMember[tcp://10.17.21.125:9001,catalina,10.17.21.125,9001, alive=38753]
    Jul 3, 2008 6:33:51 PM org.apache.catalina.cluster.mcast.McastService registerMBean
    The localhost.2008-07-03.log states that the sessions are being replicated for the jsp-examples app - book example. I have an app of our own that does not even state that the session is replicated but I though I would start here with getting the example one working.
    Jul 3, 2008 6:34:31 PM org.apache.catalina.core.ApplicationContext log
    INFO: SessionListener: sessionDestroyed('E7E9E54600927A4826AFEDB59D7EF6E7.tomcatDargle')
    However, when I take down the instance which created the session and attempt to refresh the page or navigate to another page I get page cannot be displayed. This shows that the sessions are not completely replicated. What am I missing?
    I have added my server.xml file contents:
    <Cluster className="org.apache.catalina.cluster.tcp.SimpleTcpCluster"
    managerClassName="org.apache.catalina.cluster.session.DeltaManager"
    expireSessionsOnShutdown="false"
    useDirtyFlag="false"
    notifyListenersOnReplication="true">
    <Membership
    className="org.apache.catalina.cluster.mcast.McastService"
    mcastAddr="239.192.17.20"
    mcastPort="9002"
    mcastFrequency="500"
    mcastDropTime="3000"/>
    <Receiver
    className="org.apache.catalina.cluster.tcp.ReplicationListener"
    tcpListenAddress="auto"
    tcpListenPort="9001"
    tcpSelectorTimeout="100"
    tcpThreadCount="6"/>
    <Sender
    className="org.apache.catalina.cluster.tcp.ReplicationTransmitter"
    replicationMode="pooled"
    ackTimeout="15000"
    waitForAck="true"/>
    <ClusterListener className="org.apache.catalina.cluster.session.ClusterSessionListener" />
    <ClusterListener className="org.apache.catalina.cluster.session.JvmRouteSessionIDBinderListener" />
    <Valve className="org.apache.catalina.cluster.tcp.ReplicationValve"
    filter=".*\.gif;.*\.js;.*\.css;.*\.png;.*\.jpeg;.*\.jpg;.*\.htm;.*\.html;.*\.txt;"
    primaryIndicator="true" />
    <Valve className="org.apache.catalina.cluster.session.JvmRouteBinderValve"
    enabled="true" />
    </Cluster>
    Any help at all would be greatly appreciated.
    Martin

    Hi Ganeshmb,
    The app I am using is the jsp-examples/book example.
    The load balancer is sending requests to both servers.
    When the dargle instance is sent a request I can see in the logs of both servers:
    INFO: SessionListener: sessionCreated('730F4AD5A21CA06639BF956B9F5418CB.tomcatDargle')
    When the tolka instance is sent a request I can see in the logs of both servers:
    INFO: SessionListener: sessionCreated('E7E9E54600927A4826AFEDB59D7EF6E7.tomcatTolka')
    When the server starts up the relevant info is in the logs:
    Jul 3, 2008 6:33:56 PM org.apache.catalina.cluster.session.DeltaManager start
    INFO: Starting clustering manager at /jsp-examples
    Jul 3, 2008 6:33:56 PM org.apache.catalina.cluster.session.DeltaManager getAllClusterSessions
    WARNING: Manager [jsp-examples], requesting session state from org.apache.catalina.cluster.mcast.McastMember[tcp://10.17.21.125:9001,catalina
    ,10.17.21.125,9001, alive=44363]. This operation will timeout if no session state has been received within 60 seconds.
    Jul 3, 2008 6:33:56 PM org.apache.catalina.cluster.session.DeltaManager waitForSendAllSessions
    INFO: Manager [jsp-examples]; session state send at 7/3/08 6:33 PM received in 123 ms.
    The jsp-examples book example is supposed to have serilizable object and was recommended on some sites are the way to test out the replication. Is there any other way to test this?
    Also, the main purpose of the cluster is to replicate an application from an external vendor which they say is compatible with session replication. However, this app does not even output the sessionCreated message so I am unsure if it truly is compatible.
    If I could prove that the cluster is setup correctly then I would have more to go on when contacting the vendor. At the moment I am unsure if the cluster is setup correctly for session replication.
    Thanks,
    Martin

  • Purchase Requisition Is Being Getting Created In APO But not being publishe

    On doing, SNP Location Heuristics on  one of our item, purchase requisition is being getting created in APO (We are able to see the same in RRP3) but the same is not being getting published in ECC. On doing CCR of the said location - product combination, it is showing Error u201C182u201D. We have checked the following parameters :-
    Item is an APO Item i.e. X0.
    It is having a proper Purchasing Group.
    As This be a purchase item. So, it is having a valid single Purchase Info Record.
    Item Has Not Been Blocked At Any Level.
    Vendor From Whom This Item is being getting procured is also open (Not Blocked).
    Please suggest what else to be checked  and what else can be the reason for non-flowing of purchase requisition from APO to ECC.
    Thanks & Best Regards,
    Sanjeev Chugh

    Hi Sanjeev,
    Please check change pointers if any and send them to ECC. Check the order in the planning book whether it has picked the same source for which there is a Purchase info record. If these all are fine then You send them to ECC from the CCR then check the log in ECC through CFG1 tcode.
    Regards,
    Kishore k Reddy

  • Invoice Due Date is past due but not being selected for payment

    We have 12.1.3.
    An invoice has a due date of 7/19 in our system. We have run payments several times but it is not being selected. terms are net 30, terms date was 6/19, GL date is 6/28.
    The invoice has been validated and accounted. Is there something i should be looking for to see why this won't get picked up?
    Any help is appreciated.

    For this invoice to be picked up immediately in a Payment Process Profile you can change the payment terms to immediate.
    Further, while running PPR u can select pay through date as 7/19 and select this invoice from the batch to pay.
    There are multiple factors like PPR used, if discount is applied that might effect this.
    Hope this might help.

  • Can send SMS but not receive after update...

    After updating my iPhone 4S to ios6 i have problems with receiving messages.I can send SMS but not receive. What to do?

    Although I don't believe in consequences, I think this might be one of them. My email was working fine until I installed my VPN. I use the Thunderbird email application, which I like a lot, for three Hotmail accounts and two Yahoo accounts. After installing the VPN I could receive mail but could not send it on any of my accounts. I contacted the VPN and they sent me some numeric IP Addresses to put in my account settings. One for the Hotmail accounts and one for the Yahoo accounts. I did as instructed and the email seemed to work okay. It was late in the evening and I went to bed. The next morning, I could send and receive emails on the Yahoo accounts, but could only send emails on all of the Hotmail accounts.
    I guess I'd like to know if anyone else is having this same problem. I'd hate to think it was just me. :-)
    I would like for Thunderbird to tell me if there is a way to change the outgoing server in the Account Settings, so I can enter the IP Address in there, or does the fact that I entered an IP Address in the Server Name box, cause it to override any other entries? Or should that even make a difference with me receiving mail?
    Also, at what time limit does Thunderbird send back a message that the connection to the server timed out? I continually get that message.
    I found a way to do a ping on the Hotmail server and the fastest response time for the last two days was 258.09 which seems very slow for a business computer. At least for a business that wants to stay in business. So is that time above the Thunderbird threshold of the connection time out message to be generated?
    Thanks for all your help and suggestions, Carole

Maybe you are looking for

  • HOw can I use Find My phone using my mac

    I have the Find My Phone on my iPhone. I also have a MAc desktip and a laptop (Mac Book). I have an iCloud account. If I lose my iPhone, How can I sue my Mac computer to find it. In other words, I can't use the phone (becasue it is lost). How can I u

  • Save as RTF-feature in Pages 09

    I work a lot with DEVONthink Pro Office, a tool for ordering, categorizing and searching content (mostly documents for me). Unfortunately, while DTPO shows pages files and can even search them, the integration is not complete and leaves something to

  • SAPINST failed step "Install Oracle Database (post processing)"

    i will install ep6.0 with oracle database 9.2.0.4 on sun solaris. the SAPINST failed at the step "Install Oracle Database (post processing) with follow error. the oui - installer (runinstaller) finished sucessfully. ERROR 2004-08-31 16:05:17 CJS-0008

  • Regarding the ipv6 address handling

    Hi, Are there any built-in functions in pl/sql for handling ipv6 addresses? The functions similar to inet_ntop and inet_pton in c++ are available in pl/sql?

  • Table name for Tcode: DC10

    Hi All, Can anyone tell me the name of the table for which table maintenence generator is created with Tcode:DC10? I don't have autherization to excute taht tcode. so i am unable to find it.i need to create the same table. i tried to debug FM  TRANSA