DNS errors after setting up forward lookup zones in Windows 2000

C

Chris Weber

Our DNS event logs are filling up with hundreds of errors every day. We
have the following setup in a lab environment, all with Windows 2000 SP4.
There are only 3 machines in each domain, which is isolated from the rest of
the network:

- a DMZ forest/domain, and an INTRANET forest/domain
- one-way trust from the DMZ -> INTRANET
- DNS was installed during the AD installation on each server
- We wanted hosts in each domain to resolve each other's IP addy's, so.....
- In each of the two domains, we setup Secondary forward lookup zones so
that:
- the DMZ has a copy of the INTRANET zone
- the INTRANET has a copy of the DMZ zone
- the transfer works fine
- name resolution works good in each domain, and across the trust
- ran netdiag /fix just to be sure


Our DNS event logs in each domain are filling up with the following types of
errors, separated by ****. The first two Error messages represent a large
portion of the errors, and contain IP address that are not anywhere on our
network. The last Warning message also appears a lot, and contains our DC's
IP address.

Is something not setup correctly on our part or is something else going on?

many thanks,
Chris


*******************************************
Event Type: Error
Event Source: DNS
Event Category: None
Event ID: 7063
Date: 2/15/2004
Time: 6:45:32 PM
User: N/A
Computer: INTDC
Description:
The description for Event ID ( 7063 ) in Source ( DNS ) cannot be found. The
local computer may not have the necessary registry information or message
DLL files to display messages from a remote computer. You may be able to use
the /AUXSOURCE= flag to retrieve this description; see Help and Support for
details. The following information is part of the event: 198.41.0.4.
*******************************************
Event Type: Error
Event Source: DNS
Event Category: None
Event ID: 7063
Date: 2/15/2004
Time: 6:28:33 PM
User: N/A
Computer: INTDC
Description:
The description for Event ID ( 7063 ) in Source ( DNS ) cannot be found. The
local computer may not have the necessary registry information or message
DLL files to display messages from a remote computer. You may be able to use
the /AUXSOURCE= flag to retrieve this description; see Help and Support for
details. The following information is part of the event: 198.32.64.12.


*******************************************
Event Type: Warning
Event Source: DNS
Event Category: None
Event ID: 5504
Date: 2/15/2004
Time: 6:45:34 PM
User: N/A
Computer: INTDC
Description:
The description for Event ID ( 5504 ) in Source ( DNS ) cannot be found. The
local computer may not have the necessary registry information or message
DLL files to display messages from a remote computer. You may be able to use
the /AUXSOURCE= flag to retrieve this description; see Help and Support for
details. The following information is part of the event: 10.10.10.11.
 
K

Kevin D. Goodknecht [MVP]

In
Chris Weber said:
Our DNS event logs are filling up with hundreds of errors every day.
We have the following setup in a lab environment, all with Windows
2000 SP4. There are only 3 machines in each domain, which is isolated
from the rest of the network:

- a DMZ forest/domain, and an INTRANET forest/domain
- one-way trust from the DMZ -> INTRANET
- DNS was installed during the AD installation on each server
- We wanted hosts in each domain to resolve each other's IP addy's,
so.....
- In each of the two domains, we setup Secondary forward lookup zones
so that:
- the DMZ has a copy of the INTRANET zone
- the INTRANET has a copy of the DMZ zone
- the transfer works fine
- name resolution works good in each domain, and across the trust
- ran netdiag /fix just to be sure


Our DNS event logs in each domain are filling up with the following
types of errors, separated by ****. The first two Error messages
represent a large portion of the errors, and contain IP address that
are not anywhere on our network. The last Warning message also
appears a lot, and contains our DC's IP address.

Is something not setup correctly on our part or is something else
going on?

many thanks,
Chris


*******************************************
Event Type: Error
Event Source: DNS
Event Category: None
Event ID: 7063
Date: 2/15/2004
Time: 6:45:32 PM
User: N/A
Computer: INTDC
Description:
The description for Event ID ( 7063 ) in Source ( DNS ) cannot be
found. The local computer may not have the necessary registry
information or message DLL files to display messages from a remote
computer. You may be able to use the /AUXSOURCE= flag to retrieve
this description; see Help and Support for details. The following
information is part of the event: 198.41.0.4.
*******************************************
Event Type: Error
Event Source: DNS
Event Category: None
Event ID: 7063
Date: 2/15/2004
Time: 6:28:33 PM
User: N/A
Computer: INTDC
Description:
The description for Event ID ( 7063 ) in Source ( DNS ) cannot be
found. The local computer may not have the necessary registry
information or message DLL files to display messages from a remote
computer. You may be able to use the /AUXSOURCE= flag to retrieve
this description; see Help and Support for details. The following
information is part of the event: 198.32.64.12.


*******************************************
Event Type: Warning
Event Source: DNS
Event Category: None
Event ID: 5504
Date: 2/15/2004
Time: 6:45:34 PM
User: N/A
Computer: INTDC
Description:
The description for Event ID ( 5504 ) in Source ( DNS ) cannot be
found. The local computer may not have the necessary registry
information or message DLL files to display messages from a remote
computer. You may be able to use the /AUXSOURCE= flag to retrieve
this description; see Help and Support for details. The following
information is part of the event: 10.10.10.11.
Click to expand...

Set a forwarder to 4.2.2.2 and post your ipconfig /all

The 7063 events are coming from the root servers like there is a machine
trying to register a single label domain name, in the root servers.
198.41.0.4 ptr
Click to expand...

QUESTION SECTION:
4.0.41.198.in-addr.arpa. IN PTR

ANSWER SECTION:
4.0.41.198.in-addr.arpa. 900 IN PTR a.root-servers.net.

198.32.64.12 ptr
Click to expand...

QUESTION SECTION:
12.64.32.198.in-addr.arpa. IN PTR

ANSWER SECTION:
12.64.32.198.in-addr.arpa. 86400 IN PTR l.root-servers.net.
 
D

Deji Akomolafe

Set a forwarder to 4.2.2.2 and post your ipconfig /all

Kevin, what does this do? I asked for my own education.

--
Sincerely,

Dèjì Akómöláfé, MCSE MCSA MCP+I
www.akomolafe.com
www.iyaburo.com
Do you now realize that Today is the Tomorrow you were worried about
Yesterday? -anon
 
K

Kevin D. Goodknecht [MVP]

In
Deji Akomolafe said:
Kevin, what does this do? I asked for my own education.
Click to expand...

It is a known recursive DNS server you can use as a forwarder
 
A

Ace Fekay [MVP]

Thanks. I didn't know that.
It's a DNS server I found one day tinkering around and have been using it in
the newsgroups and since then we've all been suggesting to use it for others
ever since....hope the owners don't mind!

:)


--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.
This posting is provided "AS IS" with no warranties.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Forwarding Error.... 2
Secondary Zone disappears 16
Errors thrown in DNS Server Log file 2
event 4004, 4015 1
old DNS records still coming up after AD reinstall 3
large amount of DNS errors 6
DNS Warning Events flooding DSL Log on Server 1
Deregistration of the DNS record 5

Top