My organization is running Windows 2000 with Exchange 5.5 sp4. I recently
migrated our internal DNS servers from the primary/secondary configuration
to active directory integrated (before and after the DNS servers were set to
forward requests to the ISPs DNS server). At the same time I uninstalled
the DNS server service from my mail server. However, when I did this my
mail server started generating an unusual number of host unknowns for email
external to the company.
It appeared that the initial problem was that when I converted from the
standard DNS configuration to active directory it wasn't "responding" to the
mail server, which is not a DNS server (by responding I mean that when I
tried to use the nslookup utility from the mail server it got a query
refused). I did two things to correct this issue (based on the information
that I got from the newsgroup and the knowledgebase), which was to configure
DNS so that the mail server would be capable of making zone transfer
requests so that the nslookup utility would work. The second was to change
the ip configuration of the mail server so that the first two DNS servers
are my IP's DNS servers (our internal DNS server is listed third). However,
while this lowered the number of failures on the host name (both through
NDRs indicating host unknown and the nslookup utility not finding the domain
or timing out) we still continue to get a higher number than before. The
weird thing is that I will do an nslookup a couple times in a row and get a
time out one time and then a resolution the next. I've also used external,
web-based nslookup tools and they find the domains consistently.
Considering the timing of the problem I'm assuming that it is probably
something to do with the configuration change to the DNS server, but I'm not
really sure where to go forward on troubleshooting the problem. I am a
little suspicious that part of the problem might lie with my ISP's DNS
server (I will set the nslookup utility to query them directly and they are
inconsistent). If anyone has any other suggestions I would appreciate it.
Thanks in advance.
P.S. We will be switching ISPs at the end of the month so "maybe" that will
alleviate the problem.