deleting recorded from primary does not delete from secondary dns

deleting recorded from primary does not delete from secondary dns

Post by Mr. Backu » Fri, 17 Feb 2006 17:18:19


I am deleting records from a dns server and noticed that while deleting
recorded from primary server, it does not delete from secondary dns. Is
there a method of doing this so that when I do delete a recoded from the
primary the secondary also deletes?

Thanks for any advice that may be provided.
 
 
 

deleting recorded from primary does not delete from secondary dns

Post by Herb Marti » Mon, 20 Feb 2006 23:36:56


Since it does do that automatically (in general) you
have a replication problem.

Try manually forcing the secondary to copy from master
just to see if you have a refresh time problem or something
worse.

Check these items:

Primary must ALLOW transfers (zone properties on
Primary->zone transfers)

Secondary set to use correct master

Firewall between servers or on Primary allow TCP 53

Refresh interval on zone properties SOA (if set to high
it may not have yet replicated)

Serial number on secondary must be LOWER than on
Primary (zone properties SOA both)


--
Herb Martin, MCSE, MVP
Accelerated MCSE
http://www.yqcomputer.com/
[phone number on web site]

 
 
 

deleting recorded from primary does not delete from secondary dns

Post by Mr. Backu » Thu, 23 Feb 2006 00:05:49

thanks, I'll be looking into this issue.
I did notice some things that puzzled me in the past when I walked into this
place.
It is to my understadn that the person whom updated the dns records was
doing by hand.
When i say by hand i mean copying over a text file record and filling out
the info via notepad.
This seens very odd to me why someone would do this. One flaw in this is
that many of the serial number are like 21 22 23 23 when they should be in a
YYYYMMDDnn where 'nn' would be the revision.
 
 
 

deleting recorded from primary does not delete from secondary dns

Post by Herb Marti » Thu, 23 Feb 2006 02:21:26


That is traditional for non-AD, but totally impractical for
zones which support AD Domains.


That is an Internet best practice, but MS just does sequential
serial numbers by default.

Primary-Master(s) must have a HIGHER (or equal) number
to the Secondaries or the latter will not zone transfer.

--
Herb Martin, MCSE, MVP
Accelerated MCSE
http://www.yqcomputer.com/
[phone number on web site]