How to Implement DNS Aging as a Junior Sysadmin?

By
Chris Evans
-
0
9
Asked By TechieNerd2023 On

Hey everyone! I've been tasked by my boss to figure out how to implement DNS aging to clean up some old records we have. We're working with two domain controllers using Windows Server 2019, both handling DNS and DHCP. Currently, we have a scope with a lease period of 3 days. Here's what I'm thinking of doing:

1) Export all the DNS records.

2) Change dynamic DNS records to static for all virtual machines. Should I also make static records for production workstations that have static IPs? I'd uncheck the option to delete stale records.

3) Enable scavenging on just one domain controller with a 3-day period.

4) Set up aging on the DNS zone with a no-refresh interval of 1 day and a refresh interval of 2 days. I know these should match the DHCP lease, but isn't 2 days too short? If a client fails to update their DNS within that time, wouldn't it become eligible for scavenging?

Am I on the right track, or is there something I'm missing? Thanks!

3 Answers

Answered By SysGuru99 On

Regarding changing dynamic records to static for VMs, you might not need to do that. VMs are like any other devices on your network and if configured properly, they can handle dynamic addresses just fine. The real concern is whether you need static IPs for specific services, not just for the sake of it. As for the aging intervals, it's a balancing act—you want to avoid stale records but also make sure clients can update accordingly. Maybe consider longer refresh intervals if you're worried about DNS updates.

Answered By NerdyAdmin42 On

Good luck! Sounds like you're on the right path with this setup. Just make sure to monitor how the changes affect your environment, especially when it comes to the aging settings. Keep an eye on the logs to catch any potential issues early on!

Answered By ServerMaster101 On

Totally get what you're saying about the 2-day interval. Monitoring how often your clients update should definitely inform your decision. If you find that they regularly lag behind in updating, think about adjusting that refresh period.

Related Questions

LEAVE A REPLY

Please enter your comment!
Please enter your name here

This site uses Akismet to reduce spam. Learn how your comment data is processed.