Hi Experts,We have a setup as follows:AD1 ( Global Catolog )AD2 ( Global Catolog )GC1 ( Global Catolog )GC2 ( Global Catolog )Earlier we had GC3 as well and we removed properly but some of the PCs and Servers are resolving hostname like this ... server.gc3.company.com or pc.gc3.company.com instead of server.company.com or pc.company.com.No DNS records in DNS Server but noticed gc3.company.com in WINS reverse lookup ( WINS-R ) at reverse lookup zone.Stopped the WINS service as well still showing the Name : Same as Parent folder , Type : Wins Reverse Lookup (WINS-R) , Data : gc3.company.comDNS is not integrated with Active Directory just Primary and Secondary DNS Servers.How tolve this problem , because we are Installing CA Agents on all servers to monitor but while discovering we 've been facing this problem.Thanks a lot for the advise in advanced..Regards, Amjad

Did you try to use dns forwarderes ?Network is my LOVE

That WINS-R record appears to be improperly configured. The purpose of the WINS record in your DNS zone is so that the DNS server can cross-reference against one or more WINS servers if a request comes into the DNS server and the zone does not have the record. The DNS server will then try to resolve the record using WINS accordingy to the list of WINS servers listed on the WINS tab (view the properties of the zone, company.com). If you do not use WINS server(s) in your infrastructure, then 1) delete this record from the zone.2) make sure none of your computers are configure to use WINS (check the TCP/IP settings, WINS tab on the computer)If you do use WINS server(s) in your infrastructure, then you must properly configure the record.1) make sure your computers are properly configured to use WINS--check the TCP/IP settings & your DHCP scopes.2) your WINS record in the zone should be just company.com, not gc.company.com. 3) go to the WINS tab located on the properties of the zone, and type in the correct IP addresses for the WINS server(s) you want DNS to use for that zone.That is all you need to do. Visit my blog: anITKB.com, an IT Knowledge Base.

Dear Jorge,I have found another problems in DNS environment:Our Two DNS Serversa)Domain Name : company.comPrimary DNS AD1 ( Global Catolog )Secondary DNS AD2 ( Global Catolog )WINS Segment : 10.100.172.0Problem:When I discover the AD1 & AD2 from CA NSM Server it is resolving as forestdnszone.company.com & domaindnszones.company.com instead of ad1.company.com & ad2.company.comLaunch nslookup From AD1 ( DNS ) it shows as Default Server : ad1.company.com IP Address is OKExample :Default Server: ad1.company.comAddress: 10.100.173.1 Launch nslookup From AD2 ( DNS ) it shows as Default Server : ad2.company.com IP Address is OKExample :Default Server: ad2.company.comAddress: 10.100.173.2b)Domain Name : company.comPrimary DNS GC1 ( Global Catolog )Secondary DNS GC2 ( Global Catolog )Segment : 10.100.172.0Problem:When I Run at DNS server properties as launch nslookup from ( DNS ) GC1 it is getting 1st time domaindnszones.company.com , 2nd time forestdnszone.company.com and 3rd time gc2.company.comExample :1st TimeDefault Server: forestdnszones.company.comAddress: 10.100.172.1 2nd TimeDefault Server: domaindnszones.company.comAddress: 10.100.172.13rd TimeDefault Server: gc2.company.comAddress: 10.100.172.1at GC1 server its launching as gc2.company.com instead of gc1.company.comAndMissing 10.100.172.0 in Reverse lookup zone at GC2 ( its not replicated from GC1 )Launch nslookup From ( DNS ) GC2 it shows as Default Server : Unknown IP Address is OKExample :*** Can't find server name for address 10.100.172.2: Non-existent domainDefault Server: UnKnownAddress: 10.100.172.2DNS Records created already in AD1,AD2,GC1&GC2 to communicate each other , mainly we are facing problem from CA NSM servers to discover the servers for the monitoring.From CA NSM Server getting as follows errorsHostname AD1 does not match target host AD2Hostname GC1 does not match target host AD2Hostname GC2 does not match target host AD2Hostname GC2 does not match target host GC1Note : I have performed the flushdns , reload & restart the DNS service at GC1 & GC2Please advice and thanks a lot .....Regards, Amjuu ..

Dear Nasiri,I have found another problems in DNS environment:Our Two DNS Serversa)Domain Name : company.comPrimary DNS AD1 ( Global Catolog )Secondary DNS AD2 ( Global Catolog )WINS Segment : 10.100.172.0Problem:When I discover the AD1 & AD2 from CA NSM Server it is resolving as forestdnszone.company.com & domaindnszones.company.com instead of ad1.company.com & ad2.company.comLaunch nslookup From AD1 ( DNS ) it shows as Default Server : ad1.company.com IP Address is OKExample :Default Server: ad1.company.comAddress: 10.100.173.1 Launch nslookup From AD2 ( DNS ) it shows as Default Server : ad2.company.com IP Address is OKExample :Default Server: ad2.company.comAddress: 10.100.173.2b)Domain Name : company.comPrimary DNS GC1 ( Global Catolog )Secondary DNS GC2 ( Global Catolog )Segment : 10.100.172.0Problem:When I Run at DNS server properties as launch nslookup from ( DNS ) GC1 it is getting 1st time domaindnszones.company.com , 2nd time forestdnszone.company.com and 3rd time gc2.company.comExample :1st TimeDefault Server: forestdnszones.company.comAddress: 10.100.172.1 2nd TimeDefault Server: domaindnszones.company.comAddress: 10.100.172.13rd TimeDefault Server: gc2.company.comAddress: 10.100.172.1at GC1 server its launching as gc2.company.com instead of gc1.company.comAndMissing 10.100.172.0 in Reverse lookup zone at GC2 ( its not replicated from GC1 )Launch nslookup From ( DNS ) GC2 it shows as Default Server : Unknown IP Address is OKExample :*** Can't find server name for address 10.100.172.2: Non-existent domainDefault Server: UnKnownAddress: 10.100.172.2DNS Records created already in AD1,AD2,GC1&GC2 to communicate each other , mainly we are facing problem from CA NSM servers to discover the servers for the monitoring.From CA NSM Server getting as follows errorsHostname AD1 does not match target host AD2Hostname GC1 does not match target host AD2Hostname GC2 does not match target host AD2Hostname GC2 does not match target host GC1Note : I have performed the flushdns , reload & restart the DNS service at GC1 & GC2Please advice and thanks a lot .....Regards, Amjuu ..

The issues appear to stem from incorrect and/or duplicated information in your reverse lookup zone(s). In addition, if you are missing the reverse lookup zone on GC2, go back to GC1 and make sure it is set to type of Active Directory Integrated.Go to the reverse zone hosted for 10.100.172.x and make sure you have only one record for 10.100.172.1. It appears that you have three. There should only be ONE PTR record mapping back to a host otherwise DNS will apply "Round Robin" and you will just scroll through the records each time you attempt to resolve. Visit my blog: anITKB.com, an IT Knowledge Base.

Dear Jorge,I'm planning to make Active Directory Integrated in our environment to avoid all DNS issues.But we have Two DNS servers .i.e a)Domain Name : company.comPrimary DNS AD1 ( Global Catalog )Secondary DNS AD2 ( Global Catalog )Segment : 10.100.173.0b)Domain Name : company.comPrimary DNS GC1 ( Global Catalog )Secondary DNS GC2 ( Global Catalog )Segment : 10.100.172.0How to deploy AD Integrated DNS on existing environment. .? Because we have already Two DNS Servers.GC1 is Schema Master, If I change schema master to AD1 ?? is there any issues ???I'm ready to make another DC to deploy Active Directory Integrated DNS or I want to change AD Integrated on existing setup.In this scenario what could be the recommendation of Microsoft.Appreciated if you could advise me with precautions & steps.Thank you very much for your valuable time.Regards, Amjuu ..

Hello Amjuu,Based on what I am reading from this thread, all 4 of the systems AD1, AD2, GC1, and GC2 are in the SAME DOMAIN and are all DCs, correct? If so, the zones stored on those DCs (DNS servers) can already participate in Active Directory Integrated Zones. Microsoft highly recommends these types of zones just based on the increase security that comes with it such as securing the zone itself within the AD database, Secure DDNS updates, secure transfers via AD replication, etc...The way to deploy this is simple. Schedule an outage so that your users will know that there may be a slight interruption in service while you make the changes. Remove the zones from three of the four servers. On the first DC, right click the zone(s) [make sure all of the zones are there] and covert them to AD Integrated (on the General Tab, properties of the zone). You can force replication of AD or just wait until normal replication occurs. Once replication occurs the AD integrated zones will appear on the other DCs running DNS. That's it!Not sure why you are bringing up the Schema Master question... It is not related to this topic. The Schema Master can stay where it is. As you deploy additional DCs (if needed), once you load DNS, it will automatically load the AD Integrated zones. Visit my blog: anITKB.com, an IT Knowledge Base.

Yes Jorge , The Setup is:AD1 DNS for all client PCs recordsGC1 DNS for only Server recordsAll 4 of the systems AD1, AD2, GC1, and GC2 are in the SAME DOMAIN and all are DCs & GCs.Let say I removed the Zones from AD2,GC1&GC2 , and Deploying New DC ( AD3 ) with AD Integrated, what about the AD1 Zones ? Do I need to change to AD Integrated or automatically it will update ?Thanks a lot.Regards, Amjuu ..

Ok, before you do anything....If you are considering hosting all of the zones on all of your DNS servers, then...1) get all of the zones loaded on AD12) convert them all to AD Integrated3) remove any of the remaining primary/secondary zones from AD2, GC1, GC2.4) Set up AD3 as a DC with DNS. The AD zones will automatically load (since they are in AD).If you want to host zones on specific DNS servers as AD Inegrated, then you'll need to create DNS partitions. Then configure certain DNS servers to load those custom partitions. Its not hard, but you are introducing complexity in to the design. I dont recommend this unless you do have a valid business reason. Here is some info on Directory Partitions for DNS http://support.microsoft.com/default.aspx/kb/884116If you do not want all of the zones to appear on all of the DNS servers, and you do not create custom partitions, then the AD Integrated solution may not be for you. Visit my blog: anITKB.com, an IT Knowledge Base.