How to create a 'Reverse lookup zone' on DNS Server

[deisehun]

I am getting the following error on some clients when logging on to the Domain 'LsaSrv, The
Security System could not establish a secured connection with server
DNS/prisoner.iana.org. No authentication protocol was available.'

Most forums say the solution is to create a Reverse lookup zone in DNS.

Whats the correct way of doing this. My Subnet is 10.0.11.0/24

Thanks..

 

[fregeama]

What is your DNS application? Bind? Windows? other?

In most cases, you will need to create a zone called 11.0.10.in-addr.arpa and put all of your IPs in there (the IPs from your forward lookup zone).

 

[deisehun]

It's Windows DNS alright.

I've created the 11.0.10 reverse dns record - do I know have to manually enter a record for all clients with their hostnames?

If so, which option do I choose?

 

[chipk]

You have to either create PTR records manually or configure your DHCP to register a reverse lookup record automatically. Go to DHCP, right click on server, go to Properties and check the DNS tab. The box should be checked to register A and PTR records for all clients (if this is what you want). Otherwise, just manually create PTR records for those clients that you want to have them.