I am getting error messages in my event logs randomly stating my DNS server is unable to create a resource record: The DNS server was unable to create a resource record for 08d0c81f-d338-4790-9f7b-54bc20441616._msdcs. When the name resolves that is when I get the validation error.It is in there but again, the An unknown error occurred trying while validating the server with the big red circle with an X in the middle. The name and IP are also in the Reverse Lookup Zone. I can't really pin point any changes that would have affected this short of windows updates.I have been getting complaints from my staff that web browsing has been drastically slower.It sounds like you have 3 Wide IPs set up on the GTM, which will also answer requests for records in the zone you wish to transfer.Have you configured the zone in MS DNS to allow transfers to the self-IP address of the GTM BIG-IP?The Event Viewer doesn't have any error related to the DNS. A: From the description, I understand the issue is that nslookup failed with error "query refused" and your ISP DNS server shows as "An unknown error occurred while validating the server" in DNS forwarder list. It runs for just seconds and the blue screen disappears.If I misunderstand, please dont hesitate to let me know. I don't see MPSReports folder under windows and I search MPSReports.cab, but can't find it.Also this issue could be caused by the incorrect DNS cache. Reproduce the issue and gather the debug log, then disable the debug logging. Please collect MPS report on the server (PFE version) for the analyzing. Do you have configured a primary or secondary zone in your DNS server for comcast.net? We have only one DNS zone that is setup for LAN or I should say we setup DNS zone for our internal DNS IP addresses only and we ISP DNS in teh Forwarders. Those commands don't make any differnece and we still get Can't find web site message. From it we can see that it is the remote IP address send refused response to your server, this should be the remote side issue. We can see the source is from a Cisco system device.I suggest you run the command below on this Windows 2008 server. The MPS Reporting Tool is utilized to gather detailed information regarding a systems current configuration. It appears to be your ISP's router, if in this case, you may need to contact ISP to see whether they router has declined your DNS server's request.