×
INTELLIGENT WORK FORUMS
FOR COMPUTER PROFESSIONALS

Contact US

Log In

Come Join Us!

Are you a
Computer / IT professional?
Join Tek-Tips Forums!
  • Talk With Other Members
  • Be Notified Of Responses
    To Your Posts
  • Keyword Search
  • One-Click Access To Your
    Favorite Forums
  • Automated Signatures
    On Your Posts
  • Best Of All, It's Free!

*Tek-Tips's functionality depends on members receiving e-mail. By joining you are opting in to receive e-mail.

Posting Guidelines

Promoting, selling, recruiting, coursework and thesis posting is forbidden.

Students Click Here

Dynamic update SOA 10.in-addr.arpa

Dynamic update SOA 10.in-addr.arpa

Dynamic update SOA 10.in-addr.arpa

(OP)
I have been monitoring network traffic and found that 30% of our DNS traffic outbound on our network is for a dns server that I don't reckognise.

I installed a network sniffer on the perimeter of the network and I can see a lot of Dynamic update SOA 10.in-addr.arpa DNS requests to an external DNS server coming from out PDC emulator and the a response saying Dynamic update refused.

If anyone could help shed a little light it would be apreciated.

James

RE: Dynamic update SOA 10.in-addr.arpa

It sounds like you have a DNS server internally that is trying to update an external server. The server is refusing the update (as it probably should) Make sure your SOA (start of Authority) for that zone (10.in-addr.arpa) is set to your internal server and you should stop seeing the traffic.

I am assuming that this is a zone internal to your company and you would not want to be doing outside zone transfers of this internal zone anyway.

Hope this helps,
Dana

RE: Dynamic update SOA 10.in-addr.arpa

Thanks for your reply dana the zone 10.in-addr.arpa is an internal reverse lookup zone, and you are correct in saying that this zone shouldnt be transfered to any external dns servers.

I have several reverse lookup zones in DNS my only problem is they all first octet is 10 (10.XX.XX.XX) I have checked th SOA for each zone and can find no reference to the external DNS server.

We are using Microsoft DNS for active directory.

Any ideas?

james

RE: Dynamic update SOA 10.in-addr.arpa

Under the properties for each Zone, check the following.

On the Zone transfers tab, make sure only internal DNS servers are listed in the box.

Also check under the notify tab, and remove any external servers on that list.

Dana

RE: Dynamic update SOA 10.in-addr.arpa

Dana I have checked these settings, the external dns server is not specified anywhere.

James

RE: Dynamic update SOA 10.in-addr.arpa

Is "Allow zone transfers to any server" checked?
Also, make sure, not only that the SOA is NOT set to the external server, but that the SOA IS set to your internal server.

Dana

Red Flag This Post

Please let us know here why this post is inappropriate. Reasons such as off-topic, duplicates, flames, illegal, vulgar, or students posting their homework.

Red Flag Submitted

Thank you for helping keep Tek-Tips Forums free from inappropriate posts.
The Tek-Tips staff will check this out and take appropriate action.

Reply To This Thread

Posting in the Tek-Tips forums is a member-only feature.

Click Here to join Tek-Tips and talk with other members! Already a Member? Login


Close Box

Join Tek-Tips® Today!

Join your peers on the Internet's largest technical computer professional community.
It's easy to join and it's free.

Here's Why Members Love Tek-Tips Forums:

Register now while it's still free!

Already a member? Close this window and log in.

Join Us             Close