DNS: At least one DNS server on the list of forwarders must respond to DNS queries
Updated: October 15, 2010
Applies To: Windows 7, Windows Server 2008, Windows Server 2008 R2, Windows Server 2012
This topic is intended to address a specific issue identified by a Microsoft Baseline Configuration Analyzer or Best Practices Analyzer scan. You should apply the information in this topic only to computers that have had the DNS Microsoft Baseline Configuration Analyzer or DNS Best Practices Analyzer run against them and are experiencing the issue addressed by this topic. For more information about best practices and scans, see Best Practices Analyzer.
Operating System |
Windows Server 2008, Windows Server 2008 R2, Windows Server 2012 |
Product/Feature |
DNS |
Severity |
Error |
Category |
Configuration |
Issue
All DNS servers configured in the list of forwarders are unresponsive.
None of the DNS servers configured in the list of forwarders are responsive to DNS queries.
Impact
DNS queries for external zones might fail.
Unresponsive forwarders can cause delays and failures in DNS resolution. When all forwarders are unresponsive, the DNS server will wait for the forwarding timeout period for each forwarder that is configured in the list. When all forwarders have timed out, the DNS server will attempt recursion if the recursion timeout has not expired and recursion is enabled. If the DNS server uses root hints for recursion, this can also increase the amount of DNS traffic that is sent to the Internet.
Resolution
Configure valid DNS servers in the list of forwarders.
To repair this condition, remove all unresponsive DNS servers from the list of forwarders. You can also replace unresponsive forwarders with a different DNS server that responds to DNS queries.
Membership in Administrators, or equivalent, is the minimum required to complete these procedures. Review details about using the appropriate accounts and group memberships at Local and Domain Default Groups (https://go.microsoft.com/fwlink/?LinkId=83477).
To configure the list of forwarders
Click Start, click Run, type dnsmgmt.msc, and then press ENTER. The DNS Manager console will open.
In the console tree, right-click the DNS server and then click Properties.
On the Forwarders tab, click Edit.
In the Edit Forwarders dialog box, under IP Address, click the IP address of each forwarder that is not responding, and then click Delete. Alternatively, you can type the IP address of a different DNS server that you wish to use as a forwarder. Each forwarder in the list should display as OK under Validated. Click OK to finish editing forwarders.
Click OK to close the DNS server properties dialog box.