Issue: DHCP scope deconfigure Failover is deleting Non windows clients DNS records when name protection option is used.
Ask : why the non-windows clients DNS records are deleted by Standby server when the lease is still exist in Active DHCP server? Wanted to know if this is the default behavior.
Lab Repro:
LAB Machine Detail | OS | IP | Role | Domain |
DHCP-2012-1 | 2012 | 10.0.0.7 | DHCP Active Server | contoso.com |
DHCP-2012-2 | 2012 | 192.168.0.5 | DHCP Standby Server | contoso.com |
DC1 | 2016 | 10.0.0.4 | Domain controller ,DNS Server | contoso.com |
C1 | Windows 10 | 10.0.0.200 | Windows DNS client | contoso.com |
C2 | Windows 8.1 | 192.168.0.200 | Windows DNS client | contoso.com |
C4 | Windows 7 | 10.0.0.201 | Work group Windows DNS client | Workgroup |
Responsible person to register DNS record: DHCP Server service account.
DNS Server Zone : Secure only
Steps followed to repro the issue:
- Tried renewing the IP from C4 but DHCP server could not register the record on behalf of C4.
- Disabled Name protection and renewed the IP from C4. Now DHCP server was able to register the record on behalf of C4. So enabled Name Protection back.
- Deconfigured failover from DHCP Active server.
- Collected Netmon trace from DC1 and attaching the result below. Found that record for C4 is missing in DNS console.
Request from DHCP Standby Server to DC1:
42 05:19:49 21-12-2018 7.6246840 dns.exe dhcp-2012-2.contoso.com dc1.contoso.com DNS DNS:QueryId = 0xF47F, Update, Query for contoso.com of type SOA on class Internet {DNS:26, UDP:25, IPv4:67}
Frame: Number = 42, Captured Frame Length = 223, MediaType = ETHERNET
+ Ethernet: Etype = Internet IP (IPv4),DestinationAddress:[00-15-5D-DF-35-0C],SourceAddress:[00-15-5D-DF-35-0E]
+ Ipv4: Src = 192.168.0.5, Dest = 10.0.0.4, Next Protocol = UDP, Packet ID = 30146, Total IP Length = 209
+ Udp: SrcPort = 51648, DstPort = DNS(53), Length = 189
- Dns: QueryId = 0xF47F, Update, Query for contoso.com of type SOA on class Internet
QueryIdentifier: 62591 (0xF47F)
+ Flags: Query, Opcode - Update, Rcode - Success
QuestionCount: 1 (0x1)
AnswerCount: 0 (0x0)
NameServerCount: 1 (0x1)
AdditionalCount: 1 (0x1)
- QRecord: contoso.com of type SOA on class Internet
QuestionName: contoso.com
QuestionType: SOA, Marks the start of a zone of authority, 6(0x6)
QuestionClass: Internet, 1(0x1)
- AuthorityRecord: C4.contoso.com of type Host Addr on class None: 10.0.0.201
ResourceName: C4.contoso.com
ResourceType: A, IPv4 address, 1(0x1)
ResourceClass: None, 254(0xfe)
TimeToLive: 0 (0x0)
ResourceDataLength: 4 (0x4)
IPAddress: 10.0.0.201
+ AdditionalRecord: 1248-ms-7.7-3ed4e56.1d7d4ea4-045a-11e9-0494-00155ddf3529 of type TSIG on class Any
Response from DC1 to DHCP Standby Server:
47 05:19:50 21-12-2018 7.9268106 dns.exe dc1.contoso.com dhcp-2012-2.contoso.com DNS DNS:QueryId = 0xF47F, Update, Response - Success {DNS:26, UDP:25, IPv4:67}
Frame: Number = 47, Captured Frame Length = 223, MediaType = ETHERNET
+ Ethernet: Etype = Internet IP (IPv4),DestinationAddress:[00-15-5D-DF-35-0E],SourceAddress:[00-15-5D-DF-35-0C]
+ Ipv4: Src = 10.0.0.4, Dest = 192.168.0.5, Next Protocol = UDP, Packet ID = 16365, Total IP Length = 209
+ Udp: SrcPort = DNS(53), DstPort = 51648, Length = 189
- Dns: QueryId = 0xF47F, Update, Response - Success
QueryIdentifier: 62591 (0xF47F)
+ Flags: Response, Opcode - Update, Rcode - Success
QuestionCount: 1 (0x1)
AnswerCount: 0 (0x0)
NameServerCount: 1 (0x1)
AdditionalCount: 1 (0x1)
- QRecord: contoso.com of type SOA on class Internet
QuestionName: contoso.com
QuestionType: SOA, Marks the start of a zone of authority, 6(0x6)
QuestionClass: Internet, 1(0x1)
- AuthorityRecord: C4.contoso.com of type Host Addr on class None: 10.0.0.201
ResourceName: C4.contoso.com
ResourceType: A, IPv4 address, 1(0x1)
ResourceClass: None, 254(0xfe)
TimeToLive: 0 (0x0)
ResourceDataLength: 4 (0x4)
IPAddress: 10.0.0.201
+ AdditionalRecord: 1248-ms-7.7-3ed4e56.1d7d4ea4-045a-11e9-0494-00155ddf3529 of type TSIG on class Any