Arrrg. My ISP put in a new edge firewall that was eating their EDNS packets to the root hints. At least all of you were able to get me close enough to the problem to get them pointed in the right direction.
Very much appreciated. ________________________________ From: Kennedy, Jim [kennedy...@elyriaschools.org] Sent: Friday, January 07, 2011 4:12 PM To: NT System Admin Issues Subject: RE: DNS oddities Ok, so that was a red herring but I get it nowm tyvm. The appending was only from nslookup. Exchange is not doing it that way, I can see that sitting her watching wireshark. Moving it off to another switch now I think. From: Andrew S. Baker [mailto:asbz...@gmail.com] Sent: Friday, January 07, 2011 2:26 PM To: NT System Admin Issues Subject: Re: DNS oddities Have you seen: http://social.technet.microsoft.com/Forums/en-US/exchangesvrtransport/thread/a9b1a718-7b22-4678-aa91-c8ecebb4c6fa I'm actually looking for a different link to give you, pertaining to how DNS queries are performed. You can see that occur at the command-line as well, unless you query "hostname.domain.tld." vs "hostname.domain.tld" The trailing period changes the behavior. (Actually, saying that last sentence helped me with a better query. Try this: http://social.technet.microsoft.com/Forums/en-US/winserverNIS/thread/b98d0210-f50b-47b0-82e8-2188fff547a1/ ) ASB (My Bio via About.Me<http://about.me/Andrew.S.Baker/bio>) Exploiting Technology for Business Advantage... On Fri, Jan 7, 2011 at 12:51 PM, Kennedy, Jim <kennedy...@elyriaschools.org<mailto:kennedy...@elyriaschools.org>> wrote: It gets weird with the packet capture. Sometimes the Exchange server is apending my internal domain name to the MX lookup. So instead of doing an MX query for google.com<http://google.com> it is asking for google.com.MyInternal.local From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org<mailto:kennedy...@elyriaschools.org>] Sent: Friday, January 07, 2011 11:23 AM To: NT System Admin Issues Subject: RE: DNS oddities +1 From: Andrew S. Baker [mailto:asbz...@gmail.com<mailto:asbz...@gmail.com>] Sent: Friday, January 07, 2011 11:19 AM To: NT System Admin Issues Subject: Re: DNS oddities Time for a packet capture, perhaps. ASB (My Bio via About.Me<http://about.me/Andrew.S.Baker/bio>) Exploiting Technology for Business Advantage... On Fri, Jan 7, 2011 at 10:46 AM, Kennedy, Jim <kennedy...@elyriaschools.org<mailto:kennedy...@elyriaschools.org>> wrote: Still happening, but just on the Exchange server. On the DNS server nslookup it does not fail. Got to be a communication issue between the two server? -----Original Message----- From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org<mailto:kennedy...@elyriaschools.org>] Sent: Thursday, January 06, 2011 7:09 PM To: NT System Admin Issues Subject: RE: DNS oddities I spoke too soon, that nic change didn't help. However nuking IPV6 on the DNS server and rebooting it and now things look really good. I spammed a mx lookup a 100 times on the transport server and it was ok everytime. I hope I didn't speak too soon again. I will report more in the morning. ________________________________________ From: Kennedy, Jim [kennedy...@elyriaschools.org<mailto:kennedy...@elyriaschools.org>] Sent: Thursday, January 06, 2011 6:23 PM To: NT System Admin Issues Subject: RE: DNS oddities Two, I hit the connector settings and pointed it to the one enabled nic before seeing your message. The switch is not busy, this can be replicated on a Sunday when I am the only one around. But the NIC change may be helping. Still monitoring it from home. ________________________________________ From: Michael B. Smith [mich...@smithcons.com<mailto:mich...@smithcons.com>] Sent: Thursday, January 06, 2011 5:41 PM To: NT System Admin Issues Subject: RE: DNS oddities How many NICs on the Exchange server? How busy is the switch it's connected to? Regards, Michael B. Smith Consultant and Exchange MVP http://TheEssentialExchange.com From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org<mailto:kennedy...@elyriaschools.org>] Sent: Thursday, January 06, 2011 4:37 PM To: NT System Admin Issues Subject: DNS oddities Ok, we are not that big...and I have lots of redundant equipment scattered all over the city to spread out the load. I have two DNS servers in my main data server. One of them is pretty much limited to serving MX lookups for my single Exchange 2007 transport server. I am getting sporadic lookup time outs. I can sit at a command prompt and spam nslookups and get it to do it one time out of ten or so...sometimes more and sometimes less. But I can always make it happen. Exchange is set to use the NIC settings. Going to the DNS server itself and spamming DNS lookups and it will not happen. Switching the Exchange server to other DNS servers and it still happens. Each DNS server forwards to our 'ISP'. Some are 2008 and some are 2008 R2. I have the extended DNS turned off. Where to start? ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com<mailto:listmana...@lyris.sunbeltsoftware.com> with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com<mailto:listmana...@lyris.sunbeltsoftware.com> with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
