question

tarekH-3457 avatar image
0 Votes"
tarekH-3457 asked tarekH-3457 commented

domain controller 2016 DNS zones empty

hello
I dont know what happen after scavenging all DNS records and folders are missing from my only domain controller
i have no backup as i didn't even have time to set up the backup
now i have this - how can i recreate the folders ? they are all missing like dc , _sites,_tcp , etc
I also have these events : The DNS server has loaded the zone _msdcs.Otojuste.local from file NULL on server DC.Otojuste.local. [virtualization instance: .].
The DNS server has loaded the zone Otojuste.local from file NULL on server DC.Otojuste.local. [virtualization instance: .].

looks like a file should exist in place of NULL

131605-dns.png


windows-serverwindows-dhcp-dns
dns.png (69.3 KiB)
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

cthivierge avatar image
0 Votes"
cthivierge answered tarekH-3457 commented

From the test i have done, if the DNS Zone is AD integrated and it has never been changed for a file, you should be able to restart the netlogon service on the DC to recreate all folder /records.

But if the DNS Zone has been configured into a file, event if revert configuration to AD integrated, you cannot recreate those records by restarting the Netlogon service

Can you validate if the records are still in the Domain DNS Zone & Forest DNS Zone Partitions ?

You can see this informations using the console adsiedit.msc

Click Action / Connect To
Click on the radio button "Select a well known Naming Context:
Select Configuration
Click Ok

Open the configuration partition and click on CN=Partitions
On the right side, right click on the DomainDNSZone and click on New Connection from Here
You will have a connection to the DomainDNSZone on the left side

Click on the DomainDNSZone on the left side and navigate to CN=MicrosoftDNS
Under that, you should see the DNS Zones. Are you able to see the different records under each DNS Zones ?

Do the same thing for the Forest DNSZone


Also, what is the Scavenging configuration for the Refresh interval / No-Refresh interval ?

· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

the real issue was a damn filter in the view ... a sysadmin forgot about it .. yet strangely the filter remained active even after a reboot and a dns reinstallation !

0 Votes 0 ·
cthivierge avatar image
0 Votes"
cthivierge answered tarekH-3457 commented

Hmmm... that's weird... normally a scavenging does not delete this...

Have you tried to restart the netlogon service on the DC ?

net stop netlogon && net start netlogon

hth

· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

didnt do a thing

0 Votes 0 ·
cthivierge avatar image
0 Votes"
cthivierge answered tarekH-3457 commented

Does the zones were AD Integrated of in a file (C:\Windows\System32\dns...) ?
By default, the DNS zones are AD Integrated.

· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

what do you mean ?
yes dns is AD integrated

0 Votes 0 ·
tarekH-3457 avatar image
0 Votes"
tarekH-3457 answered

yes i can see some

131673-image.png




i was able to run another dc , i can see everything in the dns .. is there a way to backup and restore ?


image.png (358.3 KiB)
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

LimitlessTechnology-2700 avatar image
0 Votes"
LimitlessTechnology-2700 answered

Hello @tarekH-3457,

Does your successfully registered DNS records are no longer present in a DNS zone?

A cumulative list of reasons that cause DNS records to disappear from DNS zones are listed in the below link and Depending on the issue, the resolutions change.

https://docs.microsoft.com/en-us/troubleshoot/windows-server/networking/dns-records-not-present

Hope this answers all your queries, if not please do repost back.
If an Answer is helpful, please click "Accept Answer" and upvote it : )

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.