DisableDynamicDns for a specific Adapter

This is specific to Windows 2008.

I know there are a bunch of articles out there that say, you should never disable dynamic DNS for a Windows 2008 domain controller, but I have a reason: The domain controller has an iSCSI connection to a SAN. That SAN is on a private subnet that is unreachable by anyone. Yet people are getting that address as a round robin address to connect to for directory information. THIS SHOULD NEVER HAPPEN! The solution is to disable the dynamic DNS updating for that interface. Microsoft (as of this writing) didn't have a support document for anything other than 2000/2003 server. So this is what I did so far but its not working

First: Disabled all services except IP and QoS Packet Scheduler (which I probably could have disabled too) on the interface.

In "HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Adapters\[GUID of adapter]\" 
In "HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\[GUID of adapter]\" 

added REG_WORD DisableDynamicUpdate = 1

Finding the right GUID was easy since the IP address is listed under the Interfaces Key.

This machine was also running DNS services (nothing like registering with yourself). It was running on all IPs so I told it to run only on the first IP (NOT 10.0.0.14).

How else can I prohibit updates from that adapter? The search continues...

DisableDynamicDns (last edited 2009-09-23 22:43:46 by anderson-camtasia)