Phantom Entries in DNS Reverse Zone "atomax[ at ]nospam.nospam" <atomax[ at ]gmail.com> 5/16/2007 4:10:30 PM Hi, I have a Windows 2003 AD domain, which began as a 2000 AD Domain, but we added new servers and demoted and retired the old ones. No problems on that score. We have two entries in the DNS Reverse Zone that simply will not go away. They belonged to Linux boxes that had A records manually recorded in the Forward Zone with automatic creation of PTR, but have since killed these boxes. We removed the A record in the Forward Zone, but the entry in the Reverse Zone remained. We've tried recreating the corresponding entry in the Forward Zone, then deleting the Reverse Zone entry, but the Reverse Zone entry always comes back, whether or not the entry in the Forward Zone exists. How do I get rid of these phantoms? Max

Re: Phantom Entries in DNS Reverse Zone "Kevin D. Goodknecht Sr. [MVP]" <admin[ at ]nospam.WFTX.US> 5/16/2007 6:46:45 PM Read inline please. In news:u2FA9S9lHHA.1656[ at ]TK2MSFTNGP06.phx.gbl, atomax[ at ]nospam.nospam <atomax[ at ]gmail.com> typed: [Quoted Text] > Hi, > I have a Windows 2003 AD domain, which began as a 2000 AD Domain, but > we added new servers and demoted and retired the old ones. No > problems on that score. > We have two entries in the DNS Reverse Zone that simply will not go > away. They belonged to Linux boxes that had A records manually > recorded in the Forward Zone with automatic creation of PTR, but have > since killed these boxes. We removed the A record in the Forward > Zone, but the entry in the Reverse Zone remained. We've tried > recreating the corresponding entry in the Forward Zone, then deleting > the Reverse Zone entry, but the Reverse Zone entry always comes back, > whether or not the entry in the Forward Zone exists. > How do I get rid of these phantoms? Do the PTRs have uppercase characters in them? If they do, what is the SP level? You cannot delete DNS PTR records that contain uppercase characters in Windows Server 2003: http://support.microsoft.com/kb/842127/en-us -- Best regards, Kevin D. Goodknecht Sr. [MVP] Hope This Helps Send IM: http://www.icq.com/people/webmsg.php?to=296095728 =================================== When responding to posts, please "Reply to Group" via your newsreader so that others may learn and benefit from your issue, to respond directly to me remove the nospam. from my email address. =================================== http://www.lonestaramerica.com/ http://support.wftx.us/ http://message.wftx.us/ =================================== Use Outlook Express?... Get OE_Quotefix: It will strip signature out and more http://home.in.tum.de/~jain/software/oe-quotefix/ =================================== Keep a back up of your OE settings and folders with OEBackup: http://www.oehelp.com/OEBackup/Default.aspx ===================================

Re: Phantom Entries in DNS Reverse Zone "atomax[ at ]nospam.nospam" <atomax[ at ]gmail.com> 5/17/2007 10:58:32 AM Kevin D. Goodknecht Sr. [MVP] wrote: [Quoted Text] > Read inline please. > > In news:u2FA9S9lHHA.1656[ at ]TK2MSFTNGP06.phx.gbl, > atomax[ at ]nospam.nospam <atomax[ at ]gmail.com> typed: >> Hi, >> I have a Windows 2003 AD domain, which began as a 2000 AD Domain, but >> we added new servers and demoted and retired the old ones. No >> problems on that score. >> We have two entries in the DNS Reverse Zone that simply will not go >> away. They belonged to Linux boxes that had A records manually >> recorded in the Forward Zone with automatic creation of PTR, but have >> since killed these boxes. We removed the A record in the Forward >> Zone, but the entry in the Reverse Zone remained. We've tried >> recreating the corresponding entry in the Forward Zone, then deleting >> the Reverse Zone entry, but the Reverse Zone entry always comes back, >> whether or not the entry in the Forward Zone exists. >> How do I get rid of these phantoms? > > Do the PTRs have uppercase characters in them? > If they do, what is the SP level? > > You cannot delete DNS PTR records that contain uppercase characters in > Windows Server 2003: http://support.microsoft.com/kb/842127/en-us > > Thanks for the response. You nailed it in one. I'll check out the Methods towards the end of the KB. 2 more questions 1. Is the restricted Hotfix mentioned in the KB included in R2's DNS, or a subsequent patch? The date of my dns.exe is april/12/2007 (I have applied SP2 only to one of my DNS servers) 2. Is there any reason not to reuse those IP Addresses? Thanks, Max

Re: Phantom Entries in DNS Reverse Zone "Kevin D. Goodknecht Sr. [MVP]" <admin[ at ]nospam.WFTX.US> 5/17/2007 11:44:37 AM Read inline please. In news:%23dmoSJHmHHA.3704[ at ]TK2MSFTNGP02.phx.gbl, atomax[ at ]nospam.nospam <atomax[ at ]gmail.com> typed: [Quoted Text] >> You cannot delete DNS PTR records that contain uppercase characters >> in Windows Server 2003: http://support.microsoft.com/kb/842127/en-us >> >> > Thanks for the response. You nailed it in one. I'll check out the > Methods towards the end of the KB. > > 2 more questions > 1. Is the restricted Hotfix mentioned in the KB included in R2's DNS, > or a subsequent patch? The date of my dns.exe is april/12/2007 (I have > applied SP2 only to one of my DNS servers) Apparently, this is an upgrade? This hotfix is in SP1, which must be installed Prior to installing the R2 updates. What is does is prevent uppercase PTRs from being created (Check out the "MORE INFORMATION" section") Existing PTRs have to be deleted using the methods in the article. > 2. Is there any reason not to reuse those IP Addresses? Not as far as DNS is concerned, in fact, even with the PTRs in DNS, there is no technical reason not to use the IP. In fact, PTRs are totally optional at the Administrator's discretion, Active Directory does not require or use PTRs, as far as that goes, you could set up a Wildcard PTR that points all IP addresses to the same name. -- Best regards, Kevin D. Goodknecht Sr. [MVP] Hope This Helps Send IM: http://www.icq.com/people/webmsg.php?to=296095728 =================================== When responding to posts, please "Reply to Group" via your newsreader so that others may learn and benefit from your issue, to respond directly to me remove the nospam. from my email address. =================================== http://www.lonestaramerica.com/ http://support.wftx.us/ http://message.wftx.us/ =================================== Use Outlook Express?... Get OE_Quotefix: It will strip signature out and more http://home.in.tum.de/~jain/software/oe-quotefix/ =================================== Keep a back up of your OE settings and folders with OEBackup: http://www.oehelp.com/OEBackup/Default.aspx ===================================

Re: Phantom Entries in DNS Reverse Zone "atomax[ at ]nospam.nospam" <atomax[ at ]gmail.com> 5/17/2007 12:02:22 PM Kevin D. Goodknecht Sr. [MVP] wrote: [Quoted Text] > Read inline please. > > In news:%23dmoSJHmHHA.3704[ at ]TK2MSFTNGP02.phx.gbl, > atomax[ at ]nospam.nospam <atomax[ at ]gmail.com> typed: > >>> You cannot delete DNS PTR records that contain uppercase characters >>> in Windows Server 2003: http://support.microsoft.com/kb/842127/en-us >>> >>> >> Thanks for the response. You nailed it in one. I'll check out the >> Methods towards the end of the KB. >> >> 2 more questions >> 1. Is the restricted Hotfix mentioned in the KB included in R2's DNS, >> or a subsequent patch? The date of my dns.exe is april/12/2007 (I have >> applied SP2 only to one of my DNS servers) > > Apparently, this is an upgrade? > This hotfix is in SP1, which must be installed Prior to installing the R2 > updates. What is does is prevent uppercase PTRs from being created (Check > out the "MORE INFORMATION" section") Existing PTRs have to be deleted using > the methods in the article. > >> 2. Is there any reason not to reuse those IP Addresses? > Not as far as DNS is concerned, in fact, even with the PTRs in DNS, there is > no technical reason not to use the IP. In fact, PTRs are totally optional at > the Administrator's discretion, Active Directory does not require or use > PTRs, as far as that goes, you could set up a Wildcard PTR that points all > IP addresses to the same name. > > Excellent, Thank you, Kevin