DNSLint in Windows Server 2003

Server Backup Software
Manage your server backups without complex setups. Download free trial www.gfi.com/
server-backup

Network Backup Software
Future proof your company data with GFI Backup™ 2010. Get Free Trial! www.gfi.com/
Network_Backup

---

Guy recommends :
Free AD WMI Monitor

Take the guess work out of which WMI counters to use.

Download your free Active Directory WMI Monitor

---

---

Guy's Review of
Computer Utilities

1) FreePing
2) LanSurveyor
3) Xobni
4) PuTTY (UNIX)
5) WMI Monitor
6) BgInfo
7) Net-SNMP
8) Engineer's Toolset
9) DNS Stuff
10) WinDiff

DNSLint troubleshooting Utility for DNS

I am always on the lookout for a good new Microsoft utility.  DNSLint is my current favourite.

For basic connectivity errors you cannot beat Ping and Ipconfig.  But what if they don't solve the problem?  The answer is try DNSLint.

Topics for DNSLint

• Displays port numbers - HTML output
• Where does DNSLint come from?
• Getting started with DNSLint - /d /s
• Troubleshooting Email with DNSLint - /c
• Checking Active Directory with - /ad
• DNS Sample Report

  ‡

Displays port numbers - htm output

Firewall problems plague me, so my killer feature of DNSLint is that it displays port numbers e.g. TCP 53.  As a bonus it displays the information as HTML.  Perhaps this is the start of a new trend by Microsoft to replace the DOS output of command line utilities is permanent files.  (Who remembers to pipe the output of Ipconfig to a text file?)

Where does DNSLint come from?

The first question that I ask about any utility is where do you find it?  In the case of DNSLint the answer is: Support Cabinet on Windows Server 2003 CD.

By accident if discovered that to get the most out of DNSLint I needed the a reverse lookup zone.  I say by accident as I normally set up a reverse lookup zone as best practice.  But I went to a customers site and got egg on my face when DNSLint would not display correctly.  I blamed the customer - but only under my breath!

Does DNSLint work with Windows 2000?  Yes just provided you have access to the Windows Server 2003 CD.

DNS is a huge topic, as an MCT trainer, I can thoroughly recommend TrainSignal because they provide practical hands on training.  In particular, I like the way TrainSignal cover all learning methods, instructor lead, video and of course text material.  You can either take one module, for example DNS or go for a combination of modules.  Learn more about DNS 2003 here

Getting started with DNSLint - /d /s

As with many of Windows 2003's command line utilities there are whole bank of switches.  To get started try DNSLint /d yourdom.com.  However there is a trap with /d,  if you are NOT connected to the internet.  You must add another switch:  /s server IP.  Technically /s avoids the timeout when DNSLint tries to contact InterNIC whois

Example go to the command line type:  DNSLint /d yourdom.net  /s 10.1.0.50

The second and subsequent times you run DNSLint,  append the /y switch, meaning overwrite the dnslint.htm file.  Even better use the /r and specify your own filename.  For example, /r serverx.htm, or /t if you prefer a text file.

Troubleshooting Email with DNSLint - /c

Another feature of DNSLint is that it displays MX records which will assist in tracking down email delivery problems.  For further email testing, for example SMTP or POP3, try the /c switch.  It is possible this only works if the ports are the defaults, 25 SMTP and 110 POP.

To be clear if you just want to test SMTP the command would be:
DNSLint /d guybay.com /c smtp

Guy Recommends: SolarWinds LANSurveyor

LANSurveyor will produce a neat diagram of your network topology.  But that's just the start; LANSurveyor can create an inventory of the hardware and software of your machines and network devices.  Other neat features include dynamic update for when you add new devices to your network.  I also love the ability to export the diagrams to Microsoft Visio.

Finally, Guy bets that if you take a free trial of LANSurveyor then you will find a device on your network that you had forgotten about, or someone else installed without you realizing!

Download a Free Trial of LANSurveyor

Checking Active Directory - /ad

To tell the truth I was disappointed with this /ad switch.  To be fair it is only designed to troubleshoot forest replication.  However I was hoping for a list of _gc or _dc records.  I even tried the /v (Verbose) mode - but no dice, just the bare bones of the Glue record for Active Directory Forest replication

DNS Sample report

Monitor Your Network with the Real-time Traffic Analyzer

The main reason to monitor your network is to check at a glance which of your servers are available.  If there is a network problem you want an interface to show the scope of the problem immediately.

Even when all servers and routers are available, sooner or later you will be curious to know who, or what, is hogging the precious network's bandwidth.  A GUI showing the top 10 users makes interesting reading.

Another reason to monitor network traffic is to learn more about your server's response times and the consumption of resources.  To take the pain out of capturing frames and analysing the raw data, Guy recommends that you download a copy of the SolarWinds free Real-time NetFlow Analyzer.

Summary

Do you have a problem with DNS? Investigate solutions with DNSLint.  Not only will you get a friendly HTML output, but it will display port numbers and Glue records for Active Directory replication.

Related DNS Server topics

• New Features for DNS in Windows Server 2003
• DNS - Names & Namespace
• Types of DNS Zone
• Conditional Forwarding
• Installing DNS Server
• DNS Queries
• Root Hints
• Resource Records
• DNS Naming Rules
• Basic DNS Server Troubleshooting
• Advanced DNS Troubleshooting
• Debug Logging for DNS in Windows Server 2003
• DNSLint - Utility
• Performance Monitor Tool

 *