The DNS Zone Transfer setting is not retained in Windows Server 2008

Article translations Article translations
Article ID: 2514953 - View products that this article applies to.
Expand all | Collapse all

SYMPTOMS

Consider the following scenario:
  • You install Windows Server 2008 or Windows Server 2008 R2.
  • You install the DNS Server role.
  • You turn on the Allow Zone Transfers setting in the DNS Microsoft Management Console (MMC) snap-in.
  • You configure zone transfers to specific servers.
  • You turn off the Allow Zone Transfers setting.
In this scenario, the Allow Zone Transfers setting may not be retained when you restart the DNS Server service. After you restart the DNS Server service, the Allow Zone Transfers setting is unexpectedly turned on.

CAUSE

This issue occurs because the registry is not modified correctly when the Allow Zone Transfers setting is turned off.

WORKAROUND

To work around this issue, use one of the following methods.

Method 1: Modify the registry

Important This section, method, or task contains steps that tell you how to modify the registry. However, serious problems might occur if you modify the registry incorrectly. Therefore, make sure that you follow these steps carefully. For added protection, back up the registry before you modify it. Then, you can restore the registry if a problem occurs. For more information about how to back up and restore the registry, click the following article number to view the article in the Microsoft Knowledge Base:
322756 How to back up and restore the registry in Windows

Delete the following registry value after you turn off the Allow Zone Transfers setting:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\DNS Server\Zones\SecondaryServers

Method 2: Use Dnscmd.exe

Use the following Dnscmd.exe command to disable zone transfers:
dnscmd server_name /ZoneResetSecondaries domain_name /NoXfr

Properties

Article ID: 2514953 - Last Review: March 4, 2011 - Revision: 1.0
APPLIES TO
  • Windows Server 2008 R2 Datacenter
  • Windows Server 2008 R2 Datacenter without Hyper-V
  • Windows Server 2008 R2 Enterprise
  • Windows Server 2008 R2 Enterprise without Hyper-V
  • Windows Server 2008 R2 for Embedded Systems
  • Windows Server 2008 R2 for Itanium-Based Systems
  • Windows Server 2008 R2 Foundation
  • Windows Server 2008 R2 Service Pack 1
  • Windows Server 2008 R2 Standard
  • Windows Server 2008 R2 Standard without Hyper-V
  • Windows Server 2008 Service Pack 2
  • Windows Server 2008 Standard
  • Windows Server 2008 Standard without Hyper-V
  • Windows Server 2008 Enterprise without Hyper-V
  • Windows Server 2008 for Itanium-Based Systems
Keywords: 
kbprb kbnetwork KB2514953

Give Feedback

 

Contact us for more help

Contact us for more help
Connect with Answer Desk for expert help.
Get more support from smallbusiness.support.microsoft.com