How to troubleshoot DNS issues in an Active Directory domain controller

Hi Robert,
I have been following your videos for a few years. You have helped me greatly expand and brush up on my knowledge and I am extremely grateful for your dedication to teaching. From the bottom of my heart, thank you for helping me grow in my career as well as being an inspiration to myself and many others.

This SAVED my clients butt! We just retired an old AD/DHCP/DNS server at a client of mine and I shut the old system down last week. After removing it, page load times when going to external websites were suuuper slow and they almost couldn't run payroll on Monday! Sure enough on the new server, the forwarders were set to the old internal Server IP! I updated to Google and bam, back to normal! Thank you for this!

Saw your video for the first time. I really like your approach and delivery. I am excited to check out the rest of them. If the rest are like the first I will be a very happy man.

What a great video! I liked the fact that you exposed the most common mistakes, some of those were also my mistakes.

Thank you! For the longest time, I hadn't been able to solve why my PiHole was getting inundated with what seems to be looping DNS calls from Windows DNS Server. Finally, your explanation that I have to setup outside DNS servers under the DNS main DC --> Forwarder was the key that solved the problem! Thank you. Thank You.
I also loved your video on setting up AD on TrueNAS. Very helpful in integrating.

Loving your videos Robert. Thank you very much

Robert you ARE the best. I am thankful for your videos and relaxing voice.

Thank you man!! I was having an issue with virtual machines, this fixed it! thank you!

Awesome information- I learned a lot!!! Thank you so much for this.

Great teacher, calming voice

Thank you alot, you'd helped out to solve a problem with the DNS service in my Active Directory

This video is very helpful. Thanks for putting it together.

Many Tnx Mr. Robert McMillen

you are the best , thank you very much for all the videos you Share !

Thank you!! This solved my issue. Much appreciated!!

Thank you very much for this video, it was great help.

Thank you. That explains why I had a connection to my servers but no direct connection to the internet.

Thanks you Robert it's really helpful for me.

Super helpful information. Thanks!

Excellent Video. Really help us. Thanks Jani :)

Excellent video. You have a new subscriber

Excellent video - thanks

Great tutorial, thank you.

Well compacted guide. 👍

Great video man. Thanks

You saved me.. Thank you very much

Thank you, very helpful for DNS noobs like me.

Thanks a lots for the video.

Thank you so much Bro!

Excellent, Thanks

This is excellent.

Thank you so much!

Great video, lots of good info! One quick question about IPV6. You mentioned that if the box is left unchecked, it could cause connection issues. Why is that if we're not using any IPV6 addresses?

Great video! I have a question tho, when you Tracert to the public dns couldn't that possibly give you varying results each time? It wouldn't always take the same path would it?

you r my role model :D

If you have 3 or more DNS servers I have heard of doing this: DC1 Points to DC2 and DC3. DC2 points to DC1 and DC3. DC3 points to DC1 and DC2. I'm not sure if that is necessary, but I have heard that mentioned in various places.
Joe

Great tutorial! Only missing explanation about root hints

Thanks 👍👍👍

Thanks a lot this so clear and j did not understand why all it-managers and youtubers say to add google and others dns on our tcip domain now j got it, completly wrong

Amazing

hi there, nice content, i have a question: what will be the best approach/steps to change the ip of domain controller which is DNS and DHCP server? cheers

I ran the Best Practices Analyzer, and it mentioned that the loopback/its own IP address should not be primary, if you have two or more DCs. Do you recommend adding the secondary DNS server as primary vs. using its own IP as a first DNS server?

Great stuff. However I assume "forwarders" is only for external only not internal ?
Also as you mentioned, on the "interfaces" tab, if you. have multiple network adapters there is really no worry about requests/broadcasts to other devices. Unless they wish to connect, it's bypassing anyway. Think of it like a hub... All info gets broadcasted to all decides plugged into that multi-hub, but unless one is actually wanting to connect, it won't do any harm.. The only issue may be when you have potential/unwanted users able to sniff packets.
But, only limiting adapter to the one that's active here is good, also for performance issue, (...but there could be some argument around that one.)..

I have problem with my database server i have server in the same subnet the server that is running the application can not get the database server until i have to ping it first ping will be request time out after that ping-able after everything is fine could you please tell me how to solve this issue

Hey Robert let me ask you, our Fortigate here do the DHCP job but our Windows Server DNS is remote, when a user comes from a home office with an IP 192.... why the registration in the DNS does not occours imediately after the logon process? it takes hours, in some cases days even typing ipconfig /flushdns ipconfig /registerdns, disabling or enabling the wifi adapter. how can i fix this issue? i really need a way to force an IP update when the IP changes imediately, can you help me?

Thx 🙏

Hi Robert
Thanks for the video..
Need your help regarding the DNS issue in my DC.
Will you help?

Thanks.....

Hi Mr Robert, I just discovered your channel. I watch you from Cameroon, an African country popular for soccer and MMA fight. I appreciate your videos and thank you for helping us. Please do you have a UDEMY channel so that I purchase your courses or any Amazon account where you sell techie stuffs. Thank You

how to install windows server 2019 active directory on vps and how to join local computer on that active directory server ?

5:28 Thanks, My forwarders was not correctly configured that's why internet was not working in DC

why not set loopback as 2ndary DNS? This is still MS documented way to configure AD DNS

I thought the amount of hops is not that important anymore as networks use link state protocols now?

I am yet to find a single article explaining or stating why you should not disable IPv6 other than "Microsoft does not recommend this." Okay.. tell me EXACTLY what "core component" may be affected by doing this? Especially when dealing with an environment that does not speak out to the internet, only uses IPv4 and has no need for IPv6 communication. All IPv6 enabling has done (in my experience) is send out TCP/ DNS communication that lead to headaches to troubleshoot unless your environment is ready ahead of time to deal with IPv6...

can't open company website from inside our lan

An error occurred when DNS was queried for the service location (SRV) resource record used to locate an Active Directory Domain Controller (AD DC) for domain "DC1.shahzeb".
OK
The error was: "An existing connection was forcibly closed by the remote host." (error code 0x00002746 WSAECONNRESET)
The query was for the SRV record for _ldap._tcp.dc._msdcs.DC1.shahzeb