Windows cannot find the host name "download.microsoft.com" using DNS

When trying to download a file found on the Microsoft downloads center that starts with, for example, http://download.microsoft.com/download/6/8/7/(some_GUID)/(some_file_name.ext) i get a timeout with "Internet Explorer cannot display the webpage".

More information says:

Internet connectivity has been lost. The website is temporarily unavailable. The Domain Name Server (DNS) is not reachable. The Domain Name Server (DNS) does not have a listing for the website's domain. If this is an HTTPS (secure) address, click Tools, click Internet Options, click Advanced, and check to be sure the SSL and TLS protocols are enabled under the security section.

Diagnose Connection problems says:

Windows cannot find the host name "download.microsoft.com" using DNS

Bear with me while i expand on the problem: It all started when i tried to download Windows XP mode for my Windows 7 machine. I went to the virtual PC site, then thru the motions of Windows Genuine Advantage which validated ok, but when it redirects to grab the file just times out with above error. (NB: i also tried with the latest Chrome and Firefox but no use due to the Genuine Advantage stuff, so i decided to stick with IE).

I am behind an ADSL2+ modem router connecting via wireless (Win 7 Pro laptop); so i hop over to the desktop connected via ethernet (Vista Business), and same result; begin to think site download.microsoft.com site is down. So i give it a break an read up on EDNS, flushing the cache, hosts file, etc...

Try again an hour later on the Win 7 machine, still no go; so i turn off the Win 7 (software) firewall, and lo and behold, i can connect and grab any files from download.microsoft.com; (...nice, so we have a Micro$0ft firewall preventing access to a Micro$0ft website, no wonder my auto-updates kept failing but that's another story).

But i still am not happy that the desktop connected via ethernet still cannot get to download.microsoft.com, even though i turned off all firewalls, defenders, anti-virus, etc. What is so special / specific about the url download.microsoft.com, any other site is ok, including www.microsoft.com.

Any networking guru know what's REALLY going on, and how can i get the desktop to connect?

Ping download.microsoft.com -> Ping request could not find host download.microsoft.com. Please check the name and try again.

Ping google.com or even www.microsoft.com works gives me an IP address.

NB: On the wireless laptop ping download.microsoft.com works, i get xxxx.ms.akamai.net [202.7.177.33].

joedotnot

Posted 2010-12-12T13:27:27.007

Reputation: 273

Answers

There is a "feature" of Windows Firewall that actually treats the address "download.microsoft.com" as special, without this being documented anywhere (or at least i could not easily find any mention thru Google searches).

There is also a bug in Vista that gives inconsistent information. Recall in my original question, i thought the firewall was turned off. Refer to my attached image. In "Windows Security Center" we have big writing in the red band that shows Firewall Off (#1)... but upon clicking Windows Firewall (#2), the resulting window shows that the Firewall is actually on! (#3).

So the answer is turn the firewall off and it will ping, etc. Case closed!

alt text

joedotnot

Posted 2010-12-12T13:27:27.007

Reputation: 273

(+1, and not just to let you post the images, but also thanks for reporting back!) – Arjan – 2010-12-19T13:14:25.857

Another reason Not to use Vista! – Moab – 2010-12-19T14:47:32.337

1An issue on Win7 too. – Victor Sergienko – 2013-01-08T11:32:22.677

What DNS server are you using? Run this from the command line:

ipconfig /all

and take a look at the DNS servers section. If it's your ADSL modem, try changing it to something else - here's a sample list of public DNS servers that you can try:

http://theos.in/windows-xp/free-fast-public-dns-server-list/

Choose some DNS server from the above list and do the following from the command prompt:

nslookup download.microsoft.com <IP>

where <IP> is the IP of the DNS server you chose. Do this with your current DNS server and with some of the others from the list. If some of the other ones work, then it might be an issue with the DNS server.

Also, take a look at this article for more information - this is a complete step-by-step guide for Google public DNS:

http://code.google.com/speed/public-dns/docs/using.html

icyrock.com

Posted 2010-12-12T13:27:27.007

Reputation: 4 623

Your answer is good information to know, but the root cause is really the firewall being on. See my answer below. – joedotnot – 2010-12-19T13:11:24.527

@joedotnot Ah, classic... Glad you solved your poblem! – icyrock.com – 2010-12-19T18:10:43.303