A potential vulnerability of DNS is that an attacker can poison a name server's cache by sending queries that will cause the server to obtain host-to-IP address mappings from bogus name servers ...
The Dynamic Host Configuration Protocol (DHCP) is one of those seamless bits of modern networking that works in the background, enabling your router and computer operating systems to automatically exchange information, setup IP addresses for the network (e.g.
subnet mask and default gateway) and get the Internet connection working alongside.
A recent software update / patch for Microsoft Windows 8 and 10 appears to be disrupting Internet / website connectivity for some broadband ISP customers in the UK and elsewhere.
The update apparently makes it so that some systems are unable to get DHCP information from routers.
UPDATE 13th Dec 2016 We’ve now seen this problem affect one of our own computers and once again the quick-fix was to reboot the system a few times.
People around the Internet have since been investigating this issue and it’s now widely believed to have been introduced by the recent Windows 10 cumulative update to build 14393.479 (aka – KB3201845).
DHCP is functioning normal and working fine but it cannot update the DNS pointers for some reason. ----------------------- ddns-updates on; ddns-domainname "mydomain.lan"; ddns-update-style ad-hoc; allow unknown-clients; option domain-name "mydomain.lan"; option domain-name-servers 192.168.0.1, 184.108.40.206; option routers 192.168.0.1; option ntp-servers gov; option netbios-name-servers 192.168.0.1; option netbios-dd-server 192.168.0.1; option netbios-node-type 8; authoritative; default-lease-time 172800; subnet 192.168.0.0 netmask 255.255.255.0 Jul 22 NIKKI named: the working directory is not writable Aug 11 NIKKI dhcpd: if The Beast.IN A rrset doesn't exist add The Beast.86400 IN A 192.168.0.210: timed out.
Aug 11 NIKKI named: zone 'mydomain.lan' allows updates by IP address, which is insecure You need to define an update key and configure it in both and
Zone transfers are not prohibited or a VPN solution is not implemented that requires cryptographic authentication of communicating devices and is used exclusively by name servers authoritative for the zone.