Advertisement
Hello,<\/p>\n
A customer’s domain server has stopped responding to DNS queries.<\/p>\n
The servers’ windows firewall shows port 53 for TCP & UDP as allowed and when I run \" netstat -a -n -p udp \" from the command prompt on the server in question it shows that it is listening on UDP port 53.<\/p>\n
However if I try and telnet to the server IP from a PC on the same subnet to check if port 53 is listening I get no reply. Similarly if I set a domain PC to use the server for DNS and do an nslookup command I get the “unknown server” message and subsequently timeouts on any lookups.<\/p>\n
From the server itself however it can resolve DNS names (internal & external) .<\/p>\n
To get them basic service I have just added in Google DNS in static DNS entries on the PCs (only 15 so not a big deal).<\/p>\n
The server is a VM and they have a backup image so it can be restored but I’m wondering if there is something simple that I am overlooking ?<\/p>\n
Cheers<\/p>\n
Gavin<\/p>","upvoteCount":12,"answerCount":6,"datePublished":"2017-12-31T11:48:14.000Z","author":{"@type":"Person","name":"ops8","url":"https://community.spiceworks.com/u/ops8"},"suggestedAnswer":[{"@type":"Answer","text":"
Hello,<\/p>\n
A customer’s domain server has stopped responding to DNS queries.<\/p>\n
The servers’ windows firewall shows port 53 for TCP & UDP as allowed and when I run \" netstat -a -n -p udp \" from the command prompt on the server in question it shows that it is listening on UDP port 53.<\/p>\n
However if I try and telnet to the server IP from a PC on the same subnet to check if port 53 is listening I get no reply. Similarly if I set a domain PC to use the server for DNS and do an nslookup command I get the “unknown server” message and subsequently timeouts on any lookups.<\/p>\n
From the server itself however it can resolve DNS names (internal & external) .<\/p>\n
To get them basic service I have just added in Google DNS in static DNS entries on the PCs (only 15 so not a big deal).<\/p>\n
The server is a VM and they have a backup image so it can be restored but I’m wondering if there is something simple that I am overlooking ?<\/p>\n
Cheers<\/p>\n
Gavin<\/p>","upvoteCount":12,"datePublished":"2017-12-31T11:48:14.000Z","url":"https://community.spiceworks.com/t/no-dns-on-windows-2016-dc/626230/1","author":{"@type":"Person","name":"ops8","url":"https://community.spiceworks.com/u/ops8"}},{"@type":"Answer","text":"
How is the DC configured for DNS?<\/p>\n
Do the clients point to the DC for DNS, and only this?<\/p>\n
Can a client device ping the DC by name or DNS?<\/p>\n
Is the DNS service started?<\/p>\n
While it should be, can you check the firewall profile on the DC is set to domain (and/or reboot it if you have not yet)<\/p>","upvoteCount":0,"datePublished":"2017-12-31T11:50:53.000Z","url":"https://community.spiceworks.com/t/no-dns-on-windows-2016-dc/626230/2","author":{"@type":"Person","name":"Rod-IT","url":"https://community.spiceworks.com/u/Rod-IT"}},{"@type":"Answer","text":"
Make sure the NIC had the correct NLA setup for domain and not public or internet<\/p>","upvoteCount":3,"datePublished":"2017-12-31T11:51:50.000Z","url":"https://community.spiceworks.com/t/no-dns-on-windows-2016-dc/626230/3","author":{"@type":"Person","name":"maxsec","url":"https://community.spiceworks.com/u/maxsec"}},{"@type":"Answer","text":"
Is the DNS service running? Anything in the event logs?<\/p>","upvoteCount":2,"datePublished":"2017-12-31T12:11:41.000Z","url":"https://community.spiceworks.com/t/no-dns-on-windows-2016-dc/626230/4","author":{"@type":"Person","name":"Gary-D-Williams","url":"https://community.spiceworks.com/u/Gary-D-Williams"}},{"@type":"Answer","text":"