Permissions to create Reverse Lookup Zones in DNS

Similar Messages

• Remove Old Name Servers from reverse lookup zones in DNS- PowerShell

  Hello Scripting Guys,
  I'm a long-time fan. Please let me know if I have included enough information for you to provide some guidance. Thank
  you!
  Here is what I am attempting to do:
  import a .csv file which contains
  zoneName,hostname,RecordType
  and then delete the name server entries from the reverse lookup zones.
  Why:
  There are hundreds of zones and 80+ name servers in each for a total of about 25,000 records to be removed. I
  have the list of zones and the list of name servers which I want to remove from the zones.
  Environment:
  I am running PowerShell as a Domain Admin with access to DNS. Zones allow secure updates only (if that matters here).
  I am running it from a Server 2012 R2 server with the DNS admin tools installed against Server 2008 R2 DNS servers. Current AD functional level Windows Server 2003. All DC are DNS server and GC's.
  What I have tried:
  The following
  works to return all the Name Server records in a zone:
  .csv file format
  zoneName,hostname,RecordType
  1.112.170.in-addr.arpa,nameserver1.contoso.com.,Ns
  1.112.170.in-addr.arpa,nameserver2.contoso.com.,Ns
  1.112.170.in-addr.arpa,nameserver3.contoso.com.,Ns
  2.112.170.in-addr.arpa,nameserver1.contoso.com.,Ns
  2.112.170.in-addr.arpa,nameserver2.contoso.com.,Ns
  2.112.170.in-addr.arpa,nameserver3.contoso.com.,Ns
  Script\Command:
  Import-Module DnsServer
  $PDCE = Get-ADDomainController -Discover -Service PrimaryDC
  import-csv c:\temp\OldNSrecords-test.csv | foreach {
  Get-DnsServerResourceRecord -ZoneName $_.zoneName -RRType "Ns" -computerName $PDCE
  -Node
  OutPut to screen:
  HostName RecordType Timestamp TimeToLive RecordData
  @ NS 0 1:00:00 Nameserver1.contoso.com
  @ NS 0 1:00:00 Nameserver2.contoso.com
  However, replacing the business line (in green above after foreach) with the remove command (in red below)
  does not work to delete the specific record listed in the .csv, even though it follows the
  pattern from MS TechNet:
  Remove-DnsServerResourceRecord -ZoneName $_.zoneName -RRType "Ns" -name $_.hostname -computerName
  $PDCE
  Error:
  PS C:\Windows\system32> C:\Temp\OldNSCleanup.ps1
  Remove-DnsServerResourceRecord : Failed to get nameserver1.contoso.com. record in
  1.112.170.in-addr.arpa zone on PDCE server.
  At C:\Temp\OldNSCleanup.ps1:4 char:1
  + Remove-DnsServerResourceRecord -ZoneName $_.zoneName -RRType "Ns" -name $_.name ...
  + ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
  + CategoryInfo : ObjectNotFound: (PDCE:root/Microsoft/...rResourceRecord) [Remove-
  DnsServerResourceRecord], CimException
  + FullyQualifiedErrorId : WIN32 9714,Remove-DnsServerResourceRecord​
  When I remove the use of the .csv and put the names of the zone and server in the command, I get the same results.
  Fail.
  It's as if the record does not exist, but I can browse to it in the GUI. I found
  this about Missing Glue records, but it does not seem to apply to reverse lookup NS records. I'm thinking that I need to first load each zone into an assembly and then do the removal,
  but I'm not sure how to do that in PowerShell. I tried piping the get command for the zone to the remove command, but that did not work or I did not have the correct syntax.
  I have attempted to use DNSCMD to do the same and that command appears to work, but then fails to actually remove
  the record.
  Here is an example of that command:
  import-csv C:\Temp\OldNSrecords-test.csv | foreach {dnscmd.exe "DNSServer.contoso.com" /Recorddelete $_.ZoneName
  $_.hostname $_.recordType /f}
  Output:
  Deleted Ns record(s) at 1.112.170.in-addr.arpa
  Command completed successfully. [But not really, the NS record is still there]
  I have researched several sites including the suggest one here, but this does not fit my requirement.
  http://social.technet.microsoft.com/Forums/scriptcenter/en-US/97070ff2-59e2-4f34-9c39-054048e008af/automatically-delete-removed-dcname-servers-and-automatically-add-new-dcname-servers-in-reverse?forum=winserverDS
  http://technet.microsoft.com/en-us/library/jj649872.aspx

  Here is a backing store for the root servers in the DNS format:
  ; formerly NS.INTERNIC.NET
  . 3600000 IN NS A.ROOT-SERVERS.NET.
  A.ROOT-SERVERS.NET. 3600000 A 198.41.0.4
  ; formerly NS1.ISI.EDU
  . 3600000 NS B.ROOT-SERVERS.NET.
  B.ROOT-SERVERS.NET. 3600000 A 192.228.79.201
  ; formerly C.PSI.NET
  . 3600000 NS C.ROOT-SERVERS.NET.
  C.ROOT-SERVERS.NET. 3600000 A 192.33.4.12
  ; formerly TERP.UMD.EDU
  . 3600000 NS D.ROOT-SERVERS.NET.
  D.ROOT-SERVERS.NET. 3600000 A 128.8.10.90
  ; formerly NS.NASA.GOV
  . 3600000 NS E.ROOT-SERVERS.NET.
  E.ROOT-SERVERS.NET. 3600000 A 192.203.230.10
  ; formerly NS.ISC.ORG
  . 3600000 NS F.ROOT-SERVERS.NET.
  F.ROOT-SERVERS.NET. 3600000 A 192.5.5.241
  ; formerly NS.NIC.DDN.MIL
  . 3600000 NS G.ROOT-SERVERS.NET.
  G.ROOT-SERVERS.NET. 3600000 A 192.112.36.4
  ; formerly AOS.ARL.ARMY.MIL
  . 3600000 NS H.ROOT-SERVERS.NE
  Notice that each is a pair.
  One is the NS and the secon is the A record.
  .                        3600000      NS    G.ROOT-SERVERS.NET.
  G.ROOT-SERVERS.NET.      3600000      A     192.112.36.4
  In this case the dot represents the self reference to the A record.  These are the records that bootstrap all of the Internet.  Remove them and you ae lost.
  The CSV uses the @ to anchor the local domain.  Perhaps the DNS CmdLets prefer the dot.  The @ is what appears on the screen when we use the GUI. Note the dot at the end of the FQDN.  It is required.  Even browser use
  it but they add it if you forget.
  ¯\_(ツ)_/¯

• How to Install DNS ROLE and its FQDN service and Reverse Lookup zone in Server Core using Powershell?

  Hi
  I am Setting A Lab Scenario That the PC name "Core2012" i.e. Server Core 2012 Will be Domain Controller.
  Using PowerShell I have done this Task
  Change hostname ; Configure IP address and Preferred DNS address ; Disable IPv6 ;
  Configure Firewall ; Even Active Directory Role install.
  Now problem occur
  Well I have know to install DNS role install-WindowsFeature DNS
  Ok
  But; 
  How to configure FQDN ; Restore mode password ; Setting up global catalog server ;and configure Reverse Lookup zone Using powershell
  I have search many Forums but I am not getting to touch with it.
  So I Need a help to set and Configure DNS using Powershell
  Thank You!!!
  sagarpdalvi

  Hi Sagarpdalvi,
  To set the Safe mode password with powershell, please refer to the cmdlet Install-ADDSDomainController, to enable global catalog(GC), please run the cmdlet "Set-ADObject" after install Active Directory on the core server, to configure Reverse Lookup zone,
  please refer to the cmdlet
  Add-DnsServerPrimaryZone.
  To configure DC with powershell, please check the scripts:
  Installing a Domain Controller on Windows Server 2012
  R2 Core
  Enabling and Disabling the Global Catalog
  To configure DNS, the Domain Name System (DNS) Server Cmdlets should be helpful for you:
  http://technet.microsoft.com/en-us/library/jj649850.aspx
  I hope this helps.

• Change reverse lookup zone replication

  We have a windows 2008 R2 domain / forest.
  One Root domain and 2 childdomains. A DC/DNS server in the root domain is the scavenging server in the forest
  Long story short, i noticed that the replication of the reverse lookup zone in one childomain, is set to All DC's in this domain, instead of to all DNS servers in the forest.
  I want to change this because we have a lot of duplicate in the reverse zone, and encounter issues with remote desktop or remote asstistance.
  Can i change this to "all DNS servers running on domain controllers in this forest" without any downtime / issues?
  Thanx

  Suffixes should be configured on EVERY machine, not just DCs. This way any machine can resolve anything in the infrastructure. That's the goal to design DNS.
  If you want to go to forest wide replication, the first thing you must do is set all child DCs to ONLY use the forest root DNS servers. Don't worry about servers and clients in the child domains at this time that may be pointing to the child DC/DNS for the
  moment, because you will be doing this during a maintenance window and we'll get to them later... Stick with me a second...
  Then you would change the replication scope on the parent root domain DNS servers ONLY.
  Then WAIT for replication to happen. Go have lunch, go see a movie, etc... Then check the zone properties on a few DCs at the parent, and especially the child domains' DCs, to make sure that they reflect the zone is now set to forest wide replication.
  Now on a child domain DC, create a test record. Check the partner DCs and the other child domain DCs, and the parent root domain DCs to see if it replicated. If it did, you're good to go.
  Once you've confirmed that they are all showing forest wide replication, and the test worked, then change the child domain DCs to point to it's partner DC as the first entry, and itself or the loopback as the second entry.
  And yes, delegate the _msdcs zone. First create the _msdcs.domain.local zone, and set updates to Secure Only, and put it in the forest scope. Then go to domain.local, right-click, delegate, type in _msdcs, and type in the forest root DCs' IP.
  Hope that helps.
  Ace Fekay
  MVP, MCT, MCSE 2012, MCITP EA & MCTS Windows 2008/R2, Exchange 2013, 2010 EA & 2007, MCSE & MCSA 2003/2000, MCSA Messaging 2003
  Microsoft Certified Trainer
  Microsoft MVP - Directory Services
  Complete List of Technical Blogs: http://www.delawarecountycomputerconsulting.com/technicalblogs.php
  This posting is provided AS-IS with no warranties or guarantees and confers no rights.

• Setting Forward Lookup Zones in DNS based on the port queried

  I have the following problem.
  We are using Dynamic DNS to access our site and the modem/router differentiates via port forwarding what server the query goes to based on the port number ie all request go to abc.dyndns.org:port number.
  Based on the port eg. port 3389 goes to server1 (192.168.0.1), port 8080 goes to server 2(192.168.0.2), port 80 goes to server 3 (192.168.0.3). This all works well if you are entering from OUTSIDE the local network.
  INSIDE the local network, I have setup a Forward Lookup Zone on a Domain server using DNS where the Host A resolves abc.dyndns.org to the local IP address of server 1 (192.168.0.1). This works fine.
  How do I get the abc.dyndns.org:other ports to go to the other servers IP addresses as you can only setup one Host A record of  abc.dyndns.org to one address 192.168.0.1, if someone queries from INSIDE the local network as the modem/router does not
  come into play?

  As I said before, DNS doesn't do this. DNS has nothing to do with ports resolution. It's purely a name to IP or IP to name resolution. THAT'S IT!
  But you can port translate each individual port from the WAN IP to different IPs  internally. I thought I said that earlier? Maybe I wasn't clear. I apologize for not fully explaining it, for I thought you understood that part.
  Revisiting the bottom of your original post:
  INSIDE the local network, I have setup a Forward Lookup Zone on a Domain server using DNS where the Host A resolves abc.dyndns.org to the local IP address of server 1 (192.168.0.1). This works fine.
  How do I get the abc.dyndns.org:other ports to go to the other servers IP addresses as you can only setup one Host A record of  abc.dyndns.org to one address 192.168.0.1, if someone queries from INSIDE the local network as the modem/router does not
  come into play?
  You still have to specify the port internally. Assuming mail.domain.com is server4 (since you didn't specify that port in your original post), you simply create a mail.domain.com zone and give it a blank IP for (making this up) 192.168.0.3, then type in
  the same exact thing you would do from the outside:
  http://mail.domain.com:8083/folder  
  Like I said, it's in the application. DNS just resolve to an IP. There are 65,536 port numbers, and DNS does not deal with resolving any of them. That's the responsibility of the application or service and the client (such as a browser) connecting to
  it.
  Ace Fekay
  MVP, MCT, MCITP/EA, MCTS Windows 2008/R2 & Exchange 2007, Exchange 2010 EA, MCSE & MCSA 2003/2000, MCSA Messaging 2003
  Microsoft Certified Trainer
  Microsoft MVP - Directory Services
  Technical Blogs & Videos: http://www.delawarecountycomputerconsulting.com/
  This post is provided AS-IS with no warranties or guarantees and confers no rights.

• Application directory Partition, Reverse lookup Zone , after Installation of Tree Domain

  I have multiple domains (Windows Server 2008 Enterprize, and funtional level 2008) in an exisiting forest
  after installation of new Tree domain i am facing the problem in creating reverse zone in DNS
  Error message
  "the partition to replicate zone data top all dns server that domain controllers on the active directory ws not created. The application directory partition operation failed. the domain controller holding the domain naming master role is down or unable
  to service the request or is not running windows 2003"
  plz reply soon i am facing a trouble .
  Wajahat

  The error message states that your domain naming master role holder is down or not responding.
  First, you need to identify which one of your DCs is the holder of this FSMO role: You can use
  netdom query fsmo command for that. If there is no DC that is currently holding this FSMO role then you need to size to one of them: https://support.microsoft.com/KB/255504?wa=wsignin1.0
  If one of your DCs is holding the role then you need to check why it is not responding or unreachable. This could be checked by running
  dcdiag on this DC to do a health check.
  I would also recommend that you refer to recommendations I shared here: http://www.ahmedmalek.com/web/fr/articles.asp?artid=23
  This posting is provided AS IS with no warranties or guarantees , and confers no rights.
  Ahmed MALEK
  My Website Link
  My Linkedin Profile
  My MVP Profile

• What's the benefit of creating Forward Lookup Zones?

  Once I install the DNS Server (using Windows Server 2008 R2).
  Do I need to create a new Forward Zone? Why?
  Believe you can do it, and you will!!

  Hi Ralph,
  Yes you do, otherwise you will not be able to query hostname to ip address, for instance say you have dev machine, the hostname is devmachine, if you try to rdp, ping...etc you will not be able to do so, it will throw an error, hostname not found
  Regards

• Delegate DNS Forward Lookup Zone

  A: DNS - I would like to delegate the ability of creating Forward Lookup Zones at the root of my DNS (not subdomain).
  For example, i would like to delegate to my "Tier 1" staff with the ability to modify our DNS. i want our "Tier 1" staff to have the ability to create a Primary Zone in order to redirect users that attempt to access a site with known malware content to an internal site with a warning message notifying the user that they have attempted to access a site that is not allowed.
  Is this possible?

  Hiya,
  I'm about 86% sure that if they need permissions to  create primary zones, they will have access to the complete DNS administration. So it's just a question if that is ok?
  If that is okay you can add the users to the DNSadmin group and they should have access to perform the above from the DNS administration tool, which can be installed anywhere.

• How to do a reverse lookup on a value set?

  I have a concurrent program which has multiple paramaters with various value sets. When I run reports, I want to dynamically list on the output the parameters the user gave. The problem is that these values are often the IDs and not the value the user sees.
  Are there any packages in applications that will let me to do a "reverse lookup" with the value sets to get the values the user saw?
  Thanks,
  Kurzweil4

  Hi Stomie,
  Based on your description, the network ID of your reverse lookup zone is 172.16.160.
  To create a reverse lookup zone, please follow steps below,
  Right click Reverse Lookup Zones, click New Zone, choose proper settings of
  Zone Type, Active Directory one Replication Scope,
  Reverse Lookup Zone Name type based on your actual situation.
  In the Reverse Lookup Zone Name page, check Network ID
  radio button, enter the network ID. For example, if the network ID is 172.16.160, then enter 172, 16, 160 in order. Then you will see it appears     
  160.16.172.in-addr.arpa in the Reverse lookup zone name edit.
  Or in the Reverse Lookup Zone Name page, check
  Reverse lookup zone name radio button, then enter the name of the reverse lookup zone directly. Such as, enter
  160.16.172.in-addr.arpa in the edit.
  Click Next twice, click Finish.
  Reverse lookup zone name end up with in-addr.arpa.
  Best Regards,
  Tina

• Create a "New Zone" in the "Forward Lookup Zone"

  I am working I Windows Server 2008 R2 SP1. 
  I went to DNS Server and tried to create a "New Zone" in the "Forward Lookup Zone" under "subdomain.domain.com". 
  I got the error: "Zone Not Loaded by DNS Server".
  Tried to F5 to Refresh but still same error.
  How do I get a new child or "subdomain" that will work in forest or "domain.com"?

  Hi
  You need to create a new child Domain in a new server.
  Build a new server and follow the belwo link as how to create a new child domain. This will create a subdomain as well a DNS
  http://technet.microsoft.com/en-us/library/cc771856(v=ws.10).aspx

• DNS - NS entry on reverse lookup has changed - how to reset?

  Hi,
  When I view the DNS setup through the GUI in server admin everything looks as it should. However when I use Lookup in Network Utility there is a problem with the ns entry.
  Using lookup on the servers FQDN (xserve.company.com) returns the correct NS entry, which is xserve.company.com. However when I query the servers IP address to perform a reverse lookup the NS entry shows ns.company.com
  when I intially set up DNS all was checked and verified. Recently someone on site stopped some services and performed a hard reboot of the server as they thought it had frozen. Next time I came to the site to check things I noticed this NS entry discrepancy.
  How do I or indeed can I get the NS entry on the reverse lookup back to xserve.company.com?
  Thanks

  Hi Jeff,
  Config files in /var/named/zones appear to contain the incorrect NS entries
  There are two files in the zones directory:
  db.0.1.10.in-addr.arpa.zone.apple
  **$TTL 10800**
  **0.1.10.in-addr.arpa. IN SOA ns.company.com. admin.0.1.10.in-addr.arpa. (**
  **2009031300 ;Serial**
  **86400 ;Refresh**
  **7200 ;Retry**
  **2592000 ;Expire**
  **345600 ;Negative caching TTL**
  **0.1.10.in-addr.arpa. IN NS ns.company.com.**
  **10.0.1.10.in-addr.arpa. IN PTR xserve.company.com.**
  **db.0.1.10.in-addr.arpa.zone.apple (END)**
  and
  db.company.com.zone.apple
  $TTL 10800
  company.com. IN +SOA xserve+ john.company.com (
  2009042901 ;Serial
  86400 ;Refresh
  3600 ;Retry
  604800 ;Expire
  345600 ;Negative caching TTL
  company.com. IN +NS xserve+
  xserve IN A 10.1.0.10
  xserve IN HINFO "Apple XServe" "OSX Server 10.5.6"
  db.company.com.zone.apple (END)
  What I notice is that there are the incorrect NS entries in the reverse zone file but there are also differences in the forward zone file compared to another correctly working server - namely that in the above case the SOA and NS entry simply consist of the name xserve but on the other server these entries have the full domain name. (I italicized these entries so you know which I am referring to)
  I guess my questions now are:
  1) Should I go ahead and backup these files and edit the NS entries in the reverse zone file?
  2) Should I also edit the forward zone file SOA and NS entries to the full domain name?
  3) Should I stop the DNS service prior to making these changes and restart it afterwards or make the changes and then stop it and start it?
  Thankyou very much for your patience and time.

• Can't delete primary zone in DNS after moving the server

  Woe is me!
  Our MacMini was hosted at a Colo site and working fine. No firewall in front of the machine, so we turned on the server firewall and only allowed mail, web, ftp, and a couple of other services. This worked great using our external public DNS wired to our domain names and public fixed IP address. Later, we got VPN up a running (the trick was to create a second, local IP address for the ethernet port), but this also required us to turn on the server's DNS to create a split-brained DNS server.
  Everything was working swimmingly... and then we had a hard drive crash. Since we were thinking about moving the server onsite anyway (our POS system was accessed through the VPN, but it could be slow and made our tasting room dependent on Internet access in order to run the POS), we ordered Comcast business class internet with a fixed IP address.
  We updated the external public DNS to the new public fixed ip. Rather than plug the mini directly to the Comcast router (which is in pass-through mode), we elected to put a AirPort Extreme in front of it, mainly so we could get all of the POS computers on the same local network without using the mini as a DHCP/NAT router. We created a DHCP reservation on the Extreme so that the mini had a fixed local IP address. We port forwarded everything we wanted to expose to the Internet. Email started to work again. However, web services and VPN are nada.
  This being Snow Leopard Server and having spent literally hours debugging DNS issues when we first got the server, I knew it wouldn't be straightforward. And it hasn't been. Even changing the IP address of the server has been a chore.
  We ran "sudo changeip <old IP address> <new IP address>".
  Then we ran "sudo changeip -checkhostname" and received:
  "$ sudo changeip -checkhostname
  Primary address     = 10.0.8.2 <new static internal IP address>
  Current HostName    = <servername>.<domainname>.com
  The DNS hostname is not available, please repair DNS and re-run this tool.
  dirserv:success = "success""
  Oh no, the black pit of death.
  Even though I tried to modify the machine record in the local DNS to reflect the new internal static IP address, Nada.
  So, looking back on my previous research from Mr Hoffman and others, I stopped the DNS service, and I deleted the primary zone and reverse lookups in order to rebuild them from scratch. Except that no matter what I do, I can't delete the primary zone - it comes back like Dracula (even though the reverse zone and all of the zone records are gone). I tried rebuilding everything using the undeletable zone, but after a few services (saved each one separately), they would suddenly disappear.
  I am leery of messing with the DNS files on the server as I don't want to hose up Server Admin (my command line skills are rudimentary and slow). I have so much installed on the machine now that I am concerned about someone saying "reinstall".
  Help!
  Related to this is that it is not clear to me in web services which IP address you should use for the sites. The internal IP? The public IP? I thought Apache cared about the external IP address. And I think Apache is hosed at the moment due to my DNS troubles anyway.
  Thanks in advance!

  Morris Zwick wrote:
  And does anyone know which IP you enter for your sites in the web service? The public static IP or the internal private static IP?
  For the external DNS server I am sure you have already deduced that it should be the static IP issued you by Comcast and this will be forwarded by your router to your server.
  For your internal DNS server you could use either the internal LAN IP, or the external IP although the later might be affected by your firewall so this you will need to test.
  For the Web Server service in Server admin, if your only running a single website you could avoid the issue by just using the wildcard entry which will respond to any IP address, so this would be an empty host name and an IP address of *
  In fact you don't have to specify an IP address you could just use the hostname, so it will listen to traffic arriving at your server addressed to any IP address and as long as the URL that was requested includes the hostname you define for the site it will get responded to. So if as an example you have two websites you want to serve
  www.example.com
  site2.example.com
  then as long as both have the IP address for the site as an * (asterisk) then both should work as separate sites for traffic addressed to either the LAN or WAN IP address of the server.
  You will still need to use two IP addresses on the server to enable VPN, you could use a USB Ethernet adapter for the second one. Port forwarding for VPN is not as simple as other traffic as VPN requires traffic different to the standard IP and UDP packets. Routers that support 'VPN Passthrough' are specifically designed to accomodate this but I don't know if the AirPort Extreme does this. I have also found PPTP copes better with this sort of setup than L2TP although PPTP is generally regarded as less secure.

• Reverse Lookup not working as expected 2008 Domain

  Lately I have been noticing that reverse lookup has stopped working in my environment. I had a couple of questions.
  Can we specify the second octet for example 10.2. ? Would this resolve all IP addresses in 10.2.1 – 10.2.254 ?
  When I run ipconfig /registerdns on the local machine it registers but reverse does not register. Any ideas?
  I appreciate all the help.

  Hi,
  Yes, you can specify the second octet. You can also specify the third octet if you wish.
  Can you describe your environment a little more?
  1. Are the clients domain joined and what DNS server are they pointing to for DNS resolution?
  2. Is this DNS server authoritative for the reverse DNS zone?
  3. What OS are DNS clients and servers running?
  4. On the authoritative DNS server for the reverse zone, if you view the Security tab for properties of the reverse zone, what permissions are set?
  Thanks,
  -Greg

• IP reverse lookup slow

  Hi!
  I�m trying to create a socket by using the constructor
  new Socket(host, port)
  where the host can be a hostname like sun.com or a textual representation of an IP.
  When creating this socket using a textual representation of an IP and the port the jvm makes a reverse lookup to get the real hostname for that IP. If the reverse lookup failes
  (there is no hostname connected to this IP) the creation of the socket takes 5-10 seconds.
  How can I prevent the socket from doing this lookup?
  My application makes HTTP requests to an IP with no revers lookup hostname.
  Bad performance because of the lookup is my big problem here....
  Regards
  Porcaro

  There are ISPs out there who don't give reverse lookups; convincing all of them to fix their DNS is a pretty big task...
  Here is one horrible hack that seems to get around the reverse lookup:
  new Socket(InetAddress.getByAddress("10.10.10.12", new byte[] { 10, 10, 10, 12 }), 80);
  You'd have to write or find a numeric address -> byte[] parser. Extra credit for handling IPv6 addresses. getByAddress() exists from JDK 1.4 onwards.
  I hope someone comes up with a better way. Or unzip src.zip in the JDK and rummage around Socket.java, InetAddress.java and related to see if you find a way.

• When trying to assign IP reservation in IPAM, Domain does not appear in Forward lookup zone drop-down list

  I am trying to assign reserved IP Addresses through IPAM that is installed on a Server 2012 OS.  Here is the procedure I have been following:
  Login to IPAM server
  Open Server Manager
  In left-hand column select IPAM
  In left-center column expand IP ADDRESS SPACE
  Select IP Address Range Groups
  Right-click the appropriate address range and select Find and Allocate Available IP Address
  In new window, scroll down to Basic Configurations
  I can input the basic configurations with no problem.  DHCP Reservation Synchronizations look good too.  But when I get down to DNS Record Synchronization, I can't do anything with the Forward lookup zones because nothing appears in the drop-down
  lists and I cannot manually enter the zone name.  Here is a screen shot of what I see at this point:
  Without completing this information, I cannot complete the Address Reservation.
  Any help or insight will be greatly appreciated.
  Thanks!
  Tom LaLumiere

  Hi Tom,
  This happens if your DNS servers that are managed by IPAM are not authoritative and primary for any zones, if they are not authoritative for the appropriate zones, or if there are not any DNS servers managed by IPAM.
  See the examples below. Here my DNS server is authoritative for 4 forward zones and 2 reverse zones. I can choose any of the forward zones but assuming I pick a range such as 10.0.1.0, I would be unable to choose the 168.192.in-addr.arpa zone because the
  IP addresses do not match.
  -Greg