G
Guest
I am having an issue with multiple Windows XP Pro Machines on a client’s
corporate network. All machines are set to obtain DNS Setting Automatically
(which they do) however periodically (twice a day) they will suddenly change
the IP address settings for their DNS servers. To be more correct they
change the address of the primary server and lose the secondary server DNS
setting altogether. This happens well after they have been assigned via DHCP
and the address it changes to is similar to the original. If I do an
ipconfig/release and renew they get the correct settings again, but will
change back in approximately 12 hours. The TTL on the DHCP server is 30 days
and they are defiantly getting their DHCP info from the correct server.
I have up to date AV (McAfee’s Virus Scan Enterprise) and have run a full
virus sweep with nothing found. I have ran Adaware/Spybot and MS’s spyware
utilities with nothing noteworthy to mention.
There are some entries in the event log that seem to correspond with the DNS
server change but I think they are a result of no longer talking with AD once
the DNS servers have been lost and not the cause of the issue. They are
Event ID 5719: Netlogon There are currently no Domain Controllers Available
and Event ID 7: Kerberos The Kerberos subsystem encountered a PAC
verification error.
I have checked GP to see if some policy setting could be assigning new DNS
servers but found nothing…Is there even a GP setting for DNS servers??? I
have also checked HKLM\software\policies\microsoft\windowsNT for some reg
setting that might set DNS but found nothing there either. (checked there in
reference to a google post)
Any help would be appreciated…..Thanks in advance.
Rob
corporate network. All machines are set to obtain DNS Setting Automatically
(which they do) however periodically (twice a day) they will suddenly change
the IP address settings for their DNS servers. To be more correct they
change the address of the primary server and lose the secondary server DNS
setting altogether. This happens well after they have been assigned via DHCP
and the address it changes to is similar to the original. If I do an
ipconfig/release and renew they get the correct settings again, but will
change back in approximately 12 hours. The TTL on the DHCP server is 30 days
and they are defiantly getting their DHCP info from the correct server.
I have up to date AV (McAfee’s Virus Scan Enterprise) and have run a full
virus sweep with nothing found. I have ran Adaware/Spybot and MS’s spyware
utilities with nothing noteworthy to mention.
There are some entries in the event log that seem to correspond with the DNS
server change but I think they are a result of no longer talking with AD once
the DNS servers have been lost and not the cause of the issue. They are
Event ID 5719: Netlogon There are currently no Domain Controllers Available
and Event ID 7: Kerberos The Kerberos subsystem encountered a PAC
verification error.
I have checked GP to see if some policy setting could be assigning new DNS
servers but found nothing…Is there even a GP setting for DNS servers??? I
have also checked HKLM\software\policies\microsoft\windowsNT for some reg
setting that might set DNS but found nothing there either. (checked there in
reference to a google post)
Any help would be appreciated…..Thanks in advance.
Rob