Report on Stale DNS Records with PowerShell

Adam Bertram

Adam Bertram

Read more posts by this author.

I’ve been needing a reliable script that I can run to easily find all of the dynamic DNS records in risk of being scavenged in my client’s environment. This is a script that came out of unfortunate necessary when records were being removed via DNS scavenging and no one knew why. I believe I resolved all of the problems that were going on but now I just need a monitoring script.

This script finds all of the records in risk of being removed and provides a nice output. It checks to see if any records are for any online computers in case those computers aren’t actually offline and are just having problems updating their record. It also lets you know when the scavenging process is scheduled to start again along with all of the other standard information. I hope you get some use out of it!

Download a copy here.

#Requires -Module ActiveDirectory,DnsServer

	This script will report on all dynamic DNS records in a particular DNS zone that
	are at risk of being scavenged by the DNS scavenging process.
	Created on: 	8/22/2014
	Created by: 	Adam Bertram
	Filename:		Get-RecordsToBeScavenged.ps1
	Requirements:	An AD-integrated DNS zone
	PS> Get-RecordsToBeScavenged.ps1 -DnsZone myzone -WarningDays 5

	This example will find all DNS records in the zone 'myzone' that are set to be scavenged
	within 5 days.
 	The DNS server that will be queried
	The DNS zone that will be used to find records
.PARAMETER WarningDays
	The number of days ahead of scavenge time you'd like to report on.  By default, this script
	only displays DNS records set to be scavenged within 1 day.
param (
	[string]$DnsServer = (Get-ADDomain).ReplicaDirectoryServers[0],
	[int]$WarningDays = 1
begin {
	function Get-DnsHostname ($IPAddress) {
		## Use nslookup because it's much faster than any other cmdlet
		$Result = nslookup $IPAddress 2> $null
		$Result| where { $_ -match 'name' } | foreach {
			$_.Replace('Name:    ', '')
	Function Test-Ping ($ComputerName) {
		try {
			$oPing = new-object;
			if (($oPing.Send($ComputerName, 200).Status -eq 'TimedOut')) {
			} else {
		} catch [System.Exception] {
process {
	try {
		## Check if scavenging and aging is even enabled on the server and zone
		$ServerScavenging = Get-DnsServerScavenging -Computername $DnsServer
		$ZoneAging = Get-DnsServerZoneAging -Name $DnsZone -ComputerName $DnsServer
		if (!$ServerScavenging.ScavengingState) {
			Write-Warning "Scavenging not enabled on server '$DnsServer'"
			$NextScavengeTime = 'N/A'
		} else {
			$NextScavengeTime = $ServerScavenging.LastScavengeTime + $ServerScavenging.ScavengingInterval
		if (!$ZoneAging.AgingEnabled) {
			Write-Warning "Aging not enabled on zone '$DnsZone'"
		## A record won't be scavengable until the refresh + no-refresh period has elapsed.  Set a threshold
		## of this time plus a buffer to give the user a heads up ahead of time.
		$StaleThreshold = ($ZoneAging.NoRefreshInterval.Days + $ZoneAging.RefreshInterval.Days) + $WarningDays
		## Find all dynamic DNS host records in the zone that haven't updated their timestamp in a long time
		## ensuring to only include the hosts ending with the zone name.  If not, by default, Get-DnsServerResourceRecord
		## will include a record with and without the zone name appended
		$StaleRecords = Get-DnsServerResourceRecord -ComputerName $DnsServer -ZoneName $DnsZone -RRType A | where { $_.TimeStamp -and ($_.Timestamp -le (Get-Date).AddDays("-$StaleThreshold")) -and ($_.Hostname -like "*.$DnsZone") }
		foreach ($StaleRecord in $StaleREcords) {
			## Get the IP address of the host to preform a reverse DNS lookup later
			$RecordIp = $StaleRecord.RecordData.IPV4Address.IPAddressToString
			## Perform a reverse DNS lookup to find the actual hostname for that IP address.
			## Sometimes when a record has been out of commission for a long time duplicate
			## records can be created and the actual hostname for the IP address doesn't match
			## the old DNS record hostname anymore.
			$ActualHostname = Get-DnsHostname $RecordIp
			if ($ActualHostname) {
				## There's a PTR record for the host record.  Ping the hostname to see if it's
				## still online.  This is to only pay attention to the computers that may still
				## be online but have a problem updating their record.
				$HostOnline = Test-Ping -Computername $ActualHostname
			} else {
				$HostOnline = 'N/A'	
				'Server' = $DnsServer
				'Zone' = $DnsZone
				'RecordHostname' = $StaleRecord.Hostname
				'RecordTimestamp' = $StaleRecord.Timestamp
				'IsScavengable' = (@{ $true = $false; $false = $true }[$NextScavengeTime -eq 'N/A'])
				'ToBeScavengedOn' = $NextScavengeTime
				'ValidHostname' = $ActualHostname
				'RecordMatchesValidHostname' = $ActualHostname -eq $StaleRecord.Hostname
				'HostOnline' = (@{ $true = $HostOnline; $false = 'N/A' }[$ActualHostname -eq $StaleRecord.Hostname])
	} catch {
		Write-Error $_.Exception.Message

Want to learn more about managing DNS records with PowerShell? Why not pick up and begin learning about DNS records in this detailed, step-by-step, tutorial on managing DNS records.

Subscribe to Adam the Automator

Get the latest posts delivered right to your inbox

Looks like you're offline!