Skrevet av Emne: DNS: Windows Server 2008 R2 DNS fails on some queries  (Lest 20157 ganger)

ATC

  • Gjest
DNS: Windows Server 2008 R2 DNS fails on some queries
« på: 06. Mai 2010, 14:43 pm »
  • [applaud]0
  • [smite]0
  • We had a strange issue where commonly used hostnames (such as www.microsoft.com) would fail but others (such as www.google.com) would work.



    ATC

    • Gjest
    [Solved] DNS: Windows Server 2008 R2 DNS fails on some queries
    « Svar #1 på: 06. Mai 2010, 14:43 pm »
  • [applaud]0
  • [smite]0
  • Investigating the issue, we saw that large answers would fail consistently while small ones worked.

    www.microsoft.com.      1750    IN      CNAME   toggle.www.ms.akadns.net.
    toggle.www.ms.akadns.net. 229   IN      CNAME   g.www.ms.akadns.net.
    g.www.ms.akadns.net.    229     IN      CNAME   lb1.www.ms.akadns.net.
    lb1.www.ms.akadns.net.  229     IN      A       65.55.21.250

    www.google.com.         86228   IN      CNAME   www.l.google.com.
    www.l.google.com.       100     IN      A       74.125.79.99
    www.l.google.com.       100     IN      A       74.125.79.104
    www.l.google.com.       100     IN      A       74.125.79.147

    Noticing the difference in response sizes we came across the dnscmd 'AddressAnswerLimit' setting: http://technet.microsoft.com/en-us/library/cc940770.aspx

    From the command line, type 'dnscmd /Config /AddressAnswerLimit 0'



    Utlogget Floyd-ATC

    • Livstidsdiktator
    • Administrator
    • Guru
    • *****
    • Innlegg: 542
    • Karma: +12/-0
      • MSN Messenger - floyd@atc.no
      • Vis profil
      • floyd.atc.no
      • E-post
    Sv: DNS: Windows Server 2008 R2 DNS fails on some queries
    « Svar #2 på: 06. Mai 2010, 15:30 pm »
  • [applaud]0
  • [smite]0
  • The problem may also be caused by Windows Server 2003 announcing EDNS0 capabilities which may not work with firewalls that by default block UDP packets larger than 512 bytes. To restore traditional DNS behaviour, use the following command:

    'dnscmd /Config /EnableEDnsProbes 0'


    -Floyd.

    --
    Det finnes 10 typer mennesker;
    de som forstår binærtall, de som ikke gjør det, og de som forstår Grey code.