Article ID: 289735 - View products that this article applies to.
This article was previously published under Q289735
When DNS queries for the domain name or the domain controller's fully qualified domain name (FQDN) are sent to a Windows 2000 domain controller that is running Routing and Remote Access, the domain name or FQDN for the domain controller is resolved to an Internet protocol (IP) address that is used by Routing and Remote Access.
DNS Manager displays HOST (A) records for the Routing and Remote Access server IP addresses and Routing and Remote Access client IP addresses with the name of the domain controller and the name of the domain that is used for Active Directory.
NOTE: In Windows 2000, a HOST (A) record for the domain name is displayed with the same name as parent folder.
This behavior occurs after the first incoming Routing and Remote Access or virtual private network (VPN) connection causes the server to bind an IP address to its own NDISWAN adapter. Because the Windows 2000-based computer uses DNS name resolution for accessing NetBIOS resources, you may not be able to access resources.
This issue can occur because after you have configured and enabled Routing and Remote Access on a Windows 2000 domain controller, and the first incoming Routing and Remote Access or VPN connection is made, the server creates a PPP/NDISWAN interface. After this interface is created, the Netlogon service or the DNS Server service recognizes the interface as an interface, and then registers HOST (A) records for the Routing and Remote Access IP address that the server takes as well as the Routing and Remote Access client IP address.
NOTE: If you run Routing and Remote Access on a domain controller that owns the operations master role, a multi-homed master browser is created. It is recommended that you install Routing and Remote Access on another computer for full browsing capabilities. It is also recommended that the domain controller, which is the multi-homed master browser, has only one interface. For additional information, click the article number below to view the article in the Microsoft Knowledge Base:
(http://support.microsoft.com/kb/191611/EN-US/ )Symptoms of Multi-homed Browsers
How to Prevent the DNS Server Service from Registering A RecordsThe DNS Server service registers HOST records for all interfaces on the local computer including interfaces created by Routing and Remote Access. To prevent this behavior, configure the interfaces available to DNS. To do so:
How to Prevent Netlogon A Records from Being RegisteredThe Netlogon service registers the records for the domain. These records have the same name as the parent folder. To prevent this behavior, use the RegisterDnsARecords key. When you set this value to 0, Netlogon A records are not registered. To set the RegisterDnsARecords key:
For additional information, click the article number below to view the article in the Microsoft Knowledge Base:
(http://support.microsoft.com/kb/246804/EN-US/ )How to Enable/Disable Windows 2000 Dynamic DNS Registrations