Hi Everyone,
We're having issues with dynamic DNS updates in our environment. There seem to be a ton of DNS entries that are stale but never get scavenged, so we end up with DHCP handing out addresses that still have active DNS entires (forward & reverse), but that go to the wrong machine. We're using all 2008 R2 servers for DNS (three of them, all DC's) and one of them is also our DHCP server. I have the DHCP server configured with credentials so that it can own the DNS leases itself.
All of our DNS zones are configured to allow secure updates only, the no-refresh and refresh are each 1 day with scavenging configured at the server level. The lease times for all of DHCP is 2 days. DHCP is configured to always update A & PTR records, discard A & PTR when deleted, and dynamically update for clients that don't request.
Most of our environment is Mac based running 10.6 or 10.7. All machines are bound to our AD domain. It seems like many of the (seemingly) stale leases are from Mac clients. Looking through the DNS entries currently, there are a few hundred that have a time stamp from September. Others, which seem to be correct, are only in the past three or four days. We also have a lot of clients that have wired & wireless connections, which are in different subnets. Is it possible this is also contributing to the issues?
Essentially, I'd like our DNS to dynamically update for ALL clients on our network, and the records to precisely match DHCP leases. Perhaps our lease times are too high and scavenging too slow? Any help would be much appreciated - this is driving us insane.
Thanks!