Scott Forsyth's Blog - All Comments

re: Windows Server 2008 R2 DNS Issues

Juan Sebastián Rodríguez Isáziga — Thu, 05 Nov 2009 22:10:22 GMT

Thanks bro!!! you save my ass!!!!!, I have been dealing with this issue for a long time, now I can keep my job and my luxurous life.... lol :)

THANKS

re: Windows Server 2008 R2 DNS Issues

OWScott — Sun, 01 Nov 2009 23:19:42 GMT

Hi Todd, thanks for mentioning. I considered that. I have 2 enviornments that I tested in, one with Cisco equipment and one with home linksys equipment. In both enviornments, the Akamai queries failed while other queries worked, so, based on your comments, it sounds like Cisco is something to watch for and may have come into play with some requests (I didn't test enough to see when), but the eDNS is the most significient player in my situation.

re: Windows Server 2008 R2 DNS Issues

Todd — Fri, 30 Oct 2009 15:36:18 GMT

Another area to check: Cisco firewalls may have a feature called DNS Guard implemented. Out of the box, it has a DNS message ceiling of 512 bytes. So your firewall can also be trying to protect you, but blocking the ability to communicate through eDNS methods. We were getting time outs with DNS Guard and eDNS implemented concurrently.

re: Windows Server 2008 R2 DNS Issues

AJ — Wed, 28 Oct 2009 19:26:00 GMT

I was just beating my head against the desktop. Until I saw this applied it and it WORKS!!! Why in the name of all thats holy was this not set to 0 as default.

How to send email when port 25 is blocked

Jeff Widmer's Blog — Tue, 27 Oct 2009 04:28:11 GMT

I run Windows Server 2008 as my development environment and use the local SMTP service to send emails

Optimising an ASP.NET website using IIS

WOMBAT — Thu, 22 Oct 2009 13:37:26 GMT

Optimising an ASP.NET website using IIS

re: Windows Server 2008 R2 DNS Issues

micke — Fri, 16 Oct 2009 13:06:48 GMT

.. thanks

re: Windows Server 2008 R2 DNS Issues

Brian — Fri, 16 Oct 2009 10:00:03 GMT

Thanks for the info. I've spent half a day trying to get DNS to work before I found your article!!!

re: Windows Server 2008 R2 DNS Issues

OWScott — Tue, 13 Oct 2009 13:30:52 GMT

Steve, good call. You've pointed out the official specs for the fallback option. It sounds like it's not just a 'nice have' to fall back, but it's a 'supposed to have'.

So Akamai DNS needs to update to the latest, but Microsoft DNS Server needs to play nice with properly functioning old protocols.

re: Windows Server 2008 R2 DNS Issues

Steve — Tue, 13 Oct 2009 01:09:31 GMT

In the RFC:

www.faqs.org/.../rfc2671.html

Section 5.3 of the spec says:

"""

Responders who do not understand these protocol extensions are expected to send a response with RCODE NOTIMPL, FORMERR, or SERVFAIL.

"""

That's what the Akamai server seems to have done.

"""

Therefore use of extensions should be "probed" such that a responder who isn't known to support them be allowed a retry with no extensions if it responds with such an RCODE.

"""

That is not what W2K8 R2 DNS did.

So who is not compliant with what?