We have a problem with our DNS being contaminated with entries of machines IP addresses from people working remotely over VPN.  The VPN DHCP comes from the external VPN equipment and not our internal Windows DHCP.  So, the DNS entries stay for several days until it is cleaned up by DNS scavenging.  

This cleanup process of waiting for DNS scavenging is too slow because often the user connects via VPN the night before and then brings their laptop into the office the next morning and now the DNS is wrong because our internal Windows DHCP server is unable to register the correct updated IP address into DNS until the old IP is scavenged out of DNS later that week.

We cannot take over DHCP and use our internal DHCP for these VPN clients for a few different reasons.  

Is there any way to block DNS registering of the VPN-provided IP addresses?

What about an hourly or daily scheduled task that uses a PowerShell script to automatically delete all DNS entries in the IP ranges assigned by the VPN?

Any other solutions?

• Edited by MyGposts 13 minutes ago