I'm having intermittend issues with the clients updating their records in DNS. In the DNS Log I am seeing alot of Refused with RCODE 5. Has anyone ran across this or had the issue?

Hello, do you use Windows DNS servers? Please post an unedited ipconfig /all from the DC/DNS server and a client machine with problems to register. Also see: http://support.microsoft.com/kb/284963 and http://support.microsoft.com/kb/259277Best regards Meinolf Weber Disclaimer: This posting is provided "AS IS" with no warranties or guarantees , and confers no rights.

Yes I'm using Windows DNS Servers, they are AD Integrated. I am not getting any errors in the eventlogs. I'm only seeing the Refused on the DNS Log's.

Here's a sample from the log. 20110121 08:09:11 6D0 PACKET 01AD3960 UDP Snd 10.0.44.84 9a9f R U [05a8 REFUSED] SOA (3)fic(3)ffg(0) UDP response info Socket = 460, recvd on port (65535) Remote addr 10.0.44.84, port 50206 Time Query=39675, Queued=0, Expire=0 Buf length = 0x0500 (1280) Msg length = 0x00dc (220) Message: XID 0x9a9f Flags 0xa805 QR 1 (RESPONSE) OPCODE 5 (UPDATE) AA 0 TC 0 RD 0 RA 0 Z 0 RCODE 5 (REFUSED) ZCOUNT 1 PRECOUNT 1 UPCOUNT 3 ARCOUNT 1 ZONE SECTION: Offset = 0x000c, RR count = 0 Name "(3)fic(3)ffg(0)" ZTYPE SOA (6) ZCLASS 1 PREREQUISITE SECTION: Offset = 0x0019, RR count = 0 Name "(7)FMI2258(3)fic(3)ffg(0)" TYPE CNAME (5) CLASS 254 TTL 0 DLEN 0 DATA (none) UPDATE SECTION: Offset = 0x0034, RR count = 0 Name "[C019](7)FMI2258(3)fic(3)ffg(0)" TYPE AAAA (28) CLASS 255 TTL 0 DLEN 0 DATA (none) Offset = 0x0040, RR count = 1 Name "[C019](7)FMI2258(3)fic(3)ffg(0)" TYPE A (1) CLASS 255 TTL 0 DLEN 0 DATA (none) Offset = 0x004c, RR count = 2 Name "[C019](7)FMI2258(3)fic(3)ffg(0)" TYPE A (1) CLASS 1 TTL 1200 DLEN 4 DATA 10.0.44.84 ADDITIONAL SECTION: Offset = 0x005c, RR count = 0 Name "(9)1420-ms-7(6)1-a350(36)a29bed6d-255f-11e0-46a7-001a6b5f93e4(0)" TYPE TSIG (250) CLASS 255 TTL 0 DLEN 63 DATA Algorithm: (8)gss-tsig(0) Signed time = 1295615351 Fudge time = 36000 Sig Length = 37 Signature: 60 23 06 09 2a 86 48 86 f7 12 01 02 02 01 01 11 00 ff ff ff ff 65 3b 1c 71 00 00 00 00 85 2c 62 e4 4a 65 69 1f Original XID = 9a9f Extended RCODE = 0 Other Length = 0 Other Data:

Hello, By any chance do you have any DHCP server as well ? do your clients gets dns updates from dhcp ? http://www.virmansec.com/blogs/skhairuddin

Yes I do have Windows DHCP servers setup and they are getting updates from DHCP. On the scopes I have Enable DNS dynamic updates with always dynamically update DNS A and PTR records. Discard A and PTR records when lease is deleted and Dynamically update DNS A and PTR records for DHCP clients that do not request updates.

Let me clarify we are using Windows DHCP servers but are applying those setting via GPO.

Let me clarify we are using Windows DHCP servers but are applying those setting via GPO. Hello, which DHCP settings do you provide with GPO, please be more specific? Still waiting for the requested ipconfig /all output and the answer about the mentioned KB articles.Best regards Meinolf Weber Disclaimer: This posting is provided "AS IS" with no warranties or guarantees , and confers no rights.

Here's the ipconfig /all. I checked all the KB's and I'm not seeing anything in the event viewer. Ethernet adapter Local Area Connection: Connection-specific DNS Suffix . : domain.name Description . . . . . . . . . . . : Intel(R) 82567LM Gigabit Network Connecti on Physical Address. . . . . . . . . : 00-1C-25-9E-33-AA DHCP Enabled. . . . . . . . . . . : Yes Autoconfiguration Enabled . . . . : Yes Link-local IPv6 Address . . . . . : fe80::1cc9:cbd5:e881:327c%11(Preferred) IPv4 Address. . . . . . . . . . . : 10.0.45.15(Preferred) Subnet Mask . . . . . . . . . . . : 255.255.254.0 Lease Obtained. . . . . . . . . . : Wednesday, January 26, 2011 8:01:44 AM Lease Expires . . . . . . . . . . : Thursday, February 03, 2011 8:01:43 AM Default Gateway . . . . . . . . . : 10.0.44.1 DHCP Server . . . . . . . . . . . : 10.0.1.128 DHCPv6 IAID . . . . . . . . . . . : 234888229 DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-5A-06-DB-00-1C-25-9E-33-AA DNS Servers . . . . . . . . . . . : 10.0.1.128 10.0.1.129 Primary WINS Server . . . . . . . : 10.0.1.128 Secondary WINS Server . . . . . . : 10.0.1.129 NetBIOS over Tcpip. . . . . . . . : Enabled

We are handing this setting out in our DHCP settings.

TRY THIS 1. Create an account with AD and member of the DnsAdmins group. 2. Use this new account to specify DNS dynamic updates registration credentials within the DHCP server.http://www.virmansec.com/blogs/skhairuddin

We already have that setup. So I started digging into the DHCP logs and I'm not DNS Updates or I'm seeing some failed updates.

Do you have VLAN between server and client?Thanks, Sandeep Lahange

Yes we do.

Ok , so lets check Ip helper is enable on VLAn, also check in DHCP scope that dns is configure for client , after that run "ipconfig/registerdns" command and check ptr is getting registered.Thanks, Sandeep Lahange

So here's a question I have. What is the best way to update DNS, through DHCP or having the clients do it directly?

hi, sorry for delay , in dhcp enable DNS dynamic updates option.Thanks, Sandeep Lahange