我在 Server 2008 R2(家庭网络,没什么特别的)上有一个 AD 和 DNS 服务器。我以前有一个辅助 AD 和 DNS 盒,目前处于离线状态 - 我们搬家了,并且该服务器断开连接的时间太长,无法毫无问题地重新联机。我已经将其从 Active Directory 和 DNS 中删除。
我们目前正在使用 Apple Airport Extreme 路由器(真正的路由器坏了,需要 RMAed),并且它配置为将服务器的 IP 地址分发为 DHCP 客户端的 DNS 服务器。DNS 服务器配置了 Windows Server 设置的默认根提示。
最近的更改是将路由器上的服务器用于 DHCP 客户端。由于这是一个临时路由器,直到我们更换了另一个路由器,所以我直到现在才弄乱设置 - 这意味着客户端要么使用路由器进行 DNS,要么手动配置 DNS 以指向服务器。在这两种情况下,外部 DNS 都运行良好。如果我没有手动设置客户端的 DNS 以指向服务器,Active Directory 就会崩溃,但除此之外一切都很好。
自从我将路由器设置为将服务器的 IP 分配给 DHCP 客户端作为 DNS 地址后,DNS 解析就变得非常不稳定。需要尝试两三次才能将 FQDN 真正解析为 IP 地址。
例如,当我尝试针对我拥有的网站运行 nslookup 时,发生了以下情况:
C:\Users\claire>nslookup abettergeek.com
Server: hyrule.local
Address: 192.168.1.133
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
*** Request to hyrule.local timed-out
C:\Users\claire>nslookup abettergeek.com
Server: hyrule.local
Address: 192.168.1.133
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
*** Request to hyrule.local timed-out
C:\Users\claire>nslookup abettergeek.com
Server: hyrule.local
Address: 192.168.1.133
Non-authoritative answer:
Name: abettergeek.com
Address: 72.14.177.31
尝试了两次才最终通过外部 DNS。
我不认为这是 DNS 服务器的问题,因为手动设置客户端以使用它来处理 DNS 不会出现这个问题。
更新的调试信息:
C:\Users\claire>nslookup
Default Server: hyrule.local
Address: 192.168.1.133
> set debug
> aol.com.
Server: hyrule.local
Address: 192.168.1.133
DNS request timed out.
timeout was 2 seconds.
timeout (2 secs)
DNS request timed out.
timeout was 2 seconds.
timeout (2 secs)
*** Request to hyrule.local timed-out
> aol.com.
Server: hyrule.local
Address: 192.168.1.133
DNS request timed out.
timeout was 2 seconds.
timeout (2 secs)
------------
Got answer:
HEADER:
opcode = QUERY, id = 5, rcode = NOERROR
header flags: response, want recursion, recursion avail.
questions = 1, answers = 0, authority records = 1, additional = 0
QUESTIONS:
aol.com, type = AAAA, class = IN
AUTHORITY RECORDS:
-> aol.com
ttl = 298 (4 mins 58 secs)
primary name server = dns-01.ns.aol.com
responsible mail addr = hostmaster.aol.net
serial = 470952482
refresh = 86400 (1 day)
retry = 180 (3 mins)
expire = 2592000 (30 days)
default TTL = 300 (5 mins)
------------
*** Request to hyrule.local timed-out
> aol.com.
Server: hyrule.local
Address: 192.168.1.133
------------
Got answer:
HEADER:
opcode = QUERY, id = 6, rcode = NOERROR
header flags: response, want recursion, recursion avail.
questions = 1, answers = 5, authority records = 0, additional = 0
QUESTIONS:
aol.com, type = A, class = IN
ANSWERS:
-> aol.com
internet address = 149.174.110.102
ttl = 3591 (59 mins 51 secs)
-> aol.com
internet address = 64.12.79.57
ttl = 3591 (59 mins 51 secs)
-> aol.com
internet address = 149.174.107.97
ttl = 3591 (59 mins 51 secs)
-> aol.com
internet address = 207.200.74.38
ttl = 3591 (59 mins 51 secs)
-> aol.com
internet address = 64.12.89.186
ttl = 3591 (59 mins 51 secs)
------------
Non-authoritative answer:
------------
Got answer:
HEADER:
opcode = QUERY, id = 7, rcode = NOERROR
header flags: response, want recursion, recursion avail.
questions = 1, answers = 0, authority records = 1, additional = 0
QUESTIONS:
aol.com, type = AAAA, class = IN
AUTHORITY RECORDS:
-> aol.com
ttl = 291 (4 mins 51 secs)
primary name server = dns-01.ns.aol.com
responsible mail addr = hostmaster.aol.net
serial = 470952482
refresh = 86400 (1 day)
retry = 180 (3 mins)
expire = 2592000 (30 days)
default TTL = 300 (5 mins)
------------
Name: aol.com
Addresses: 149.174.110.102
64.12.79.57
149.174.107.97
207.200.74.38
64.12.89.186
通过交互式+调试获取更多信息:
C:\Users\claire>nslookup
Default Server: hyrule.local
Address: 192.168.1.133
> set debug
> aol.com
Server: hyrule.local
Address: 192.168.1.133
------------
Got answer:
HEADER:
opcode = QUERY, id = 2, rcode = NXDOMAIN
header flags: response, auth. answer, want recursion, recursion avail.
questions = 1, answers = 0, authority records = 1, additional = 0
QUESTIONS:
aol.com.hyrule.local, type = A, class = IN
AUTHORITY RECORDS:
-> hyrule.local
ttl = 3600 (1 hour)
primary name server = holodrum.hyrule.local
responsible mail addr = hostmaster.hyrule.local
serial = 4921
refresh = 900 (15 mins)
retry = 600 (10 mins)
expire = 86400 (1 day)
default TTL = 3600 (1 hour)
------------
------------
Got answer:
HEADER:
opcode = QUERY, id = 3, rcode = NXDOMAIN
header flags: response, auth. answer, want recursion, recursion avail.
questions = 1, answers = 0, authority records = 1, additional = 0
QUESTIONS:
aol.com.hyrule.local, type = AAAA, class = IN
AUTHORITY RECORDS:
-> hyrule.local
ttl = 3600 (1 hour)
primary name server = holodrum.hyrule.local
responsible mail addr = hostmaster.hyrule.local
serial = 4921
refresh = 900 (15 mins)
retry = 600 (10 mins)
expire = 86400 (1 day)
default TTL = 3600 (1 hour)
------------
DNS request timed out.
timeout was 2 seconds.
timeout (2 secs)
DNS request timed out.
timeout was 2 seconds.
timeout (2 secs)
*** Request to hyrule.local timed-out
> aol.com
Server: hyrule.local
Address: 192.168.1.133
------------
Got answer:
HEADER:
opcode = QUERY, id = 6, rcode = NXDOMAIN
header flags: response, auth. answer, want recursion, recursion avail.
questions = 1, answers = 0, authority records = 1, additional = 0
QUESTIONS:
aol.com.hyrule.local, type = A, class = IN
AUTHORITY RECORDS:
-> hyrule.local
ttl = 3600 (1 hour)
primary name server = holodrum.hyrule.local
responsible mail addr = hostmaster.hyrule.local
serial = 4921
refresh = 900 (15 mins)
retry = 600 (10 mins)
expire = 86400 (1 day)
default TTL = 3600 (1 hour)
------------
------------
Got answer:
HEADER:
opcode = QUERY, id = 7, rcode = NXDOMAIN
header flags: response, auth. answer, want recursion, recursion avail.
questions = 1, answers = 0, authority records = 1, additional = 0
QUESTIONS:
aol.com.hyrule.local, type = AAAA, class = IN
AUTHORITY RECORDS:
-> hyrule.local
ttl = 3600 (1 hour)
primary name server = holodrum.hyrule.local
responsible mail addr = hostmaster.hyrule.local
serial = 4921
refresh = 900 (15 mins)
retry = 600 (10 mins)
expire = 86400 (1 day)
default TTL = 3600 (1 hour)
------------
------------
Got answer:
HEADER:
opcode = QUERY, id = 8, rcode = NOERROR
header flags: response, want recursion, recursion avail.
questions = 1, answers = 5, authority records = 0, additional = 0
QUESTIONS:
aol.com, type = A, class = IN
ANSWERS:
-> aol.com
internet address = 149.174.110.102
ttl = 3561 (59 mins 21 secs)
-> aol.com
internet address = 64.12.79.57
ttl = 3561 (59 mins 21 secs)
-> aol.com
internet address = 207.200.74.38
ttl = 3561 (59 mins 21 secs)
-> aol.com
internet address = 149.174.107.97
ttl = 3561 (59 mins 21 secs)
-> aol.com
internet address = 64.12.89.186
ttl = 3561 (59 mins 21 secs)
------------
Non-authoritative answer:
------------
Got answer:
HEADER:
opcode = QUERY, id = 9, rcode = NOERROR
header flags: response, want recursion, recursion avail.
questions = 1, answers = 0, authority records = 1, additional = 0
QUESTIONS:
aol.com, type = AAAA, class = IN
AUTHORITY RECORDS:
-> aol.com
ttl = 267 (4 mins 27 secs)
primary name server = dns-01.ns.aol.com
responsible mail addr = hostmaster.aol.net
serial = 470952480
refresh = 86400 (1 day)
retry = 180 (3 mins)
expire = 2592000 (30 days)
default TTL = 300 (5 mins)
------------
Name: aol.com
Addresses: 149.174.110.102
64.12.79.57
207.200.74.38
149.174.107.97
64.12.89.186