Steff,
The root hints (root server list) is kept in a file called cache.dns. There are two copies of this
file under the <systemroot>\System32\DNS folder. When you remove the list from the DNS
MMC, then reboot, they are put back because they load out of the cache.dns file. Clear the
root servers in the MMC and then delete/rename the cache.dns file (suggest renaming if you
ever want them back) and then they should not return.
But without them, understand if your forwarding DNS servers go down, your DNS will not be
able to resolve external names. The root hints server as a backup so to speak so you always
have DNS capability.
If you are seeing a lot of DNS traffic (more than you think you should), it is not the root hints
fault, as they just accept requests. There must be something else causing your issue. Most
likely some spyware/malware on your network making excessive DNS requests.
Hope this helps,
Gary
--------------------
'--'From:
(E-Mail Removed) (Stefan Kirch)
'--'Newsgroups: microsoft.public.win2000.networking
'--'Subject: How to delete root-servers?
'--'Date: 31 Jan 2004 04:31:40 -0800
'--'Organization:
http://groups.google.com
'--'Lines: 21
'--'Message-ID: <(E-Mail Removed)>
'--'NNTP-Posting-Host: 145.254.137.108
'--'Content-Type: text/plain; charset=ISO-8859-1
'--'Content-Transfer-Encoding: 8bit
'--'X-Trace: posting.google.com 1075552301 27453 127.0.0.1 (31 Jan 2004 12:31:41 GMT)
'--'X-Complaints-To:
groups-(E-Mail Removed)
'--'NNTP-Posting-Date: Sat, 31 Jan 2004 12:31:41 +0000 (UTC)
'--'Path: cpmsftngxa07.phx.gbl!cpmsftngxa06.phx.gbl!cpmsftngxa09.phx.gbl!
TK2MSFTNGP08.phx.gbl!newsfeed00.sul.t-online.de!t-online.de!newsfeed.icl.net!
newsfeed.fjserv.net!colt.net!news.maxwell.syr.edu!postnews1.google.com!not-for-mail
'--'Xref: cpmsftngxa07.phx.gbl microsoft.public.win2000.networking:53289
'--'X-Tomcat-NG: microsoft.public.win2000.networking
'--'
'--'Hi!
'--'
'--'I want to set up my win2k-Server as a dns-server which resolves the
'--'ip's from the lan (Active Directory) and forwards all other questions
'--'to another dns-server (linux).
'--'For security reason, I want to disable all other dns-traffic from
'--'win2k despite from the linux-pc, so I tried to delete all root-servers
'--'(cause win2k seems to connect several times to them - but this traffic
'--'is completly firewalled).
'--'
'--'But: After I delete all root-server, it takes some hour/days
'--'(reboot?), and suddenly all root-servers appears in the dns-settings
'--'and I one again have the dns-traffic from win2k to the root servers.
'--'
'--'Is there a way to completely delete the root-servers, so that they
'--'never appears again? Or is there a reason, why I MUSt have
'--'root-servers, which I don't recognized?!?
'--'
'--'Best regards
'--'
'--' Steff
'--'
--
This posting is provided "AS IS" with no warranties, and confers no rights. Use of included
script samples are subject to the terms specified at
http://www.microsoft.com/info/cpyright.htm
Note: For the benefit of the community-at-large, all responses to this message are best
directed to the newsgroup/thread from which they originated.
Similar Threads
