Static Arp Entry for Exchange 2010
Hello All,
I was hoping someone could assist with an issue that our Exchange team are having, specifically with replication traffic traversing our DC to DR site.
The infrastructure consists of a Layer 3 data centre and a disaster recovery site, so essentially its a live/backup environment. Both the DC and DR site are connected with a LES using routed interfaces.
The Exchange cluster at the DC is associated with the following subnets:
MAPI - 10.1.30.X
Replication: 10.1.230.X
DR site has the following subnets associated with the exhange cluster :
MAPI - 192.168.4.X
Replication - 192.168.230.X
When an attempt is made to create a database/mailbox on an exchange server at the DC and copy it using the replication subnet source: 10.1.230.X to destination subnet: 192.168.230.X, the copy process fails.
Replication traffic in general going from DC to DR or vice-versa is subject to constant problems and seems unreliable. Our exchange team have to manually copy mailboxes from one cluster to the other using Windows explorer which works fine.
The Exchange cluster at both sites reside within a VMWare ESX enclosure and connect to Cisco 6500 switches. Would the Cisco switches require a static arp entry for their respective Exchange clusters, which should be configured on each switch? If this was missing could this be the root cause of the replication problems we're experiencing? Or does this depend on whether the exchange cluster is using NLB Unicast or Multicast mode?
Any assistance would be most appreciated.
Regards,
Jamie
Jamie,
Have a look at this link:-
http://www.cisco.com/en/US/products/hw/switches/ps708/products_configuration_example09186a0080a07203.shtml
It depends on how the team NLB is set up.
You may need static mac & static arp as well as disabling igmp snooping if multicasting is bein used.
Regards,
Alex.
Please rate useful posts.
Similar Messages
-
Hi
I'm aware of, and experiencing the problem with my arp table being poisoned. I'm working on updating the Broadcom drivers but in the meantime need to set some static entries in arp. My setup has the global zone configured on e1000g0, with a second interface e1000g1 used by a non-global-zone, alll interfaces are shared. The global zone has no ip and neither is it up on e1000g1, only plumbed. My point being this, when I create a static arp entry for my the non-global-zones default gateway, which can only be done in the global zone, it is assigned to the e1000g0 device. There is a learnt entry for the same gateway (same ip) but on the e1000g1 interface. Ideally I want the learnt entry removed and the static entry assigned to the e1000g1 interface.
Is this possible, and if not am I worrying about a problem that doesn't exist. My fear is that the non-global-zone only being aware of the e1000g1 device will only use the learnt arp entry which is in danger of changing.
If any of this made sense, please can you advise whether there is a potential problem and if it can be rectified.
Thanks813137 wrote:
Hi
I'm aware of, and experiencing the problem with my arp table being poisoned. I'm working on updating the Broadcom drivers but in the meantime need to set some static entries in arp. My setup has the global zone configured on e1000g0, with a second interface e1000g1 used by a non-global-zone, alll interfaces are shared. The global zone has no ip and neither is it up on e1000g1, only plumbed. My point being this, when I create a static arp entry for my the non-global-zones default gateway, which can only be done in the global zone, it is assigned to the e1000g0 device. There is a learnt entry for the same gateway (same ip) but on the e1000g1 interface. Ideally I want the learnt entry removed and the static entry assigned to the e1000g1 interface.
Is this possible, and if not am I worrying about a problem that doesn't exist. My fear is that the non-global-zone only being aware of the e1000g1 device will only use the learnt arp entry which is in danger of changing.
If any of this made sense, please can you advise whether there is a potential problem and if it can be rectified.Unless your global zone gets an address on the same subnet as the NGZ for e1000g1, it can't add
a static arp entry in the shared IP configuration..
OTOH, you can do this with exclusive IP zones, which is really a much cleaner config/administrative model.
I'd suggest: set up the NGZ as ip-type exclusive, assign it e1000g1, and let the NGZ itself add the static arp entry
--Sowmini -
Static ARP entry command no worky with vlan
Anyone know why this happens? I'm trying to enter a static arp entry and assign it to a specific vlan, for example:
arp 192.168.200.1 aaaa.bbbb.cccc arpa vlan 15
% Invalid input detected at '^' marker
When this is entered it errors out and marks the word vlan like it is invalid, though it is a valid option when inching forward using the ? help character. I tried multiple iterations and the only other response I get is if I enter vlan 1. To that the router responds with:
Bad ARP command - Interface may only be specified when bridging IP
Is one to assume that the vlan need not be specified? I opted to enter the vlan only for uniformity, but then when it behaved strangely I became curious. I wonder in what scenario adding the vlan to an arp entry would be valid and acceptable.
Thanks, MikeHello,
What you experienced is the normal behavior. The L3 device does not allow
you to specify the interface when you are operating in routed mode. Based on
the address you have configured, it will automatically allocate the static
ARP entry to appropriate interface. If you have entered an IP that does not
belong to any subnet, then all interfaces will consider that ARP entry. Only
if you configure two interfaces in bridge mode (like in the case of PPPoE
scenarios), then you can specify the interface ID.
Hope this helps.
Regards,
NT -
I have a question about ARP. I have a number of VLANs configured on a 6500 switch most of the vlans routing interfaces are also on the 6500. One of the VLANS use a static route pointing to a remote router for the routing interface. My question is: APP works fine for all vlans that are reouted localy by the 6500, but there are no arp entries for VLAN X that is routed remotely. I thought ARP was a L2 not L3. If someone could clear this up for me it would be great. Thanks
If you have a route to another router on the same VLAN, then the 6500 will ignore any incoming ARP requests for IP addresses on the VLAN except its own address.
I presume that the hosts on the VLAN have been configured with the other router as default gateway. In that case, the traffic from that VLAN would never go near the 6500.
However, if a host did send a packet to the 6500 destined for an address that is off the VLAN, then the 6500 would forward it in the normal way. It would then depend whether you have ICMP re-directs enabled on that VLAN interface. If you do not, then the 6500 would have no reason to put the host in its ARP cache. But if you have ICMP re-directs enabled, then the 6500 would have to ARP to find the MAC address of the host in order to send its ICMP re-direct.
In fact, the 6500 will only make an ARP table entry if it has a packet to send to the host, either because it has to forward a packet that came from outside VLAN, or because it needs to send an ICMP re-direct to the host to tell it to use the other router.
Does that make sense?
Kevin Dorrell
Luxembourg -
Static ARP Entry telnet command - techies take a look pls!!
Hello Seniors,
What is the TYPICAL telnet commpand for binding a MAC address to an IP (aka Static ARP entry) on most Linksys routers? I don't have GUI for this within the FW so telnet is the hope.
I am making question quite simple with ahope the story behind is not quite necessary to desist the thread from going astray
I am inside my telnet# on 192.168.1.1, I just need the usual command syntax,
Thank you.
Solved!
Go to Solution.Linksys X3500:
arp add 192.168.1.xxx aa:bb:cc:dd:ee:ff
arp delete 192.168.1.xxx
arp show -
How to set default website for exchange 2010
I'm unable to launch the Exchange Management Console, and then I read that it's necessary to set the default web site in a particular way, in order for Exchange 2010 Management Console to work:
http://social.technet.microsoft.com/Forums/en/exchange2010/thread/4d396628-3867-4c95-9541-e0eb021e0135
However, after setting up Sharepoint, I see that it has modified the default website, and I'd like to ask for specific settings on how the default web site bindings should look (for exchange). Could someone please advise what I need to do to correct it?
I'm having trouble interpreting what Mike Crowley recommends in the linked post above, in terms of actual steps to the site binding information (which won't mess up what exists).
Currently it says:
Type port ip address binding information
net.tcp
808:*
net.pipe
net.msmq localhost
msmq.formatname localhost
http 80 127.0.0.1
https 443 *
http 80 *
https 443 127.0.0.1
It seems the line for http on port 80 is *, which I guess is equivalent to 'all unassigned'. Is the previous http port 80 binding to 127.0.0.1 causing the problem?
But I'm also supposed to set a Powershell VDir in IIS. Can someone provide steps for that?Regarding SharePoint on Exchange:
It was not allowed earlier, as documented here:
http://office.microsoft.com/en-us/sharepoint-portal-server-it/coexistence-and-interoperability-guide-for-sharepoint-products-and-technologies-HA001160777.aspx & here:
http://support.microsoft.com/kb/825505 but there doesn't seem to be anything more recent than this. I would work under the assumption it is not supported outside of
SBS 2011 (which I am not very familiar
with).
Mike Crowley
Check out My Blog! -
How to do the hard recovery for exchange 2010 (No Restore.env generated)
enrollment:Windows server 2008 R2, exchange 2010.
I want to test the fundamentally of eseutil /cc
so I backup the exchange database by Using the Windows backup, then I restore the database, and no Restore.env be found.But I found I can run the
eseutil /r.
what's happened?
1,why No Restore.env generated for exchange 2010 in Windows server 2008 r2?
2,why I can do the soft recovery after the restoring the database?
3, how to do the hard recovery for this situation(No Restore.env )?
Please click the Mark as Answer button if a post solves your problem!Hi Eric,
From your description, I would like to clarify the following things:
1. Before performing the restore process, we need to dismount the Exchange databases that we want to restore. If the database is still mounted, the restore process will fail. If the restore process doesn't succeed, Restore.env won't be generated.
2. It is because the log files are healthy, you can run Eseutil/r and perform soft recovery.
3. In your case, you can continue to perform the soft recovery.
For more information about hard recovery and soft recovery, here are some helpful threads for your reference.
Exchange Server Soft and Hard Recovery
http://technet.microsoft.com/en-us/library/aa996168(v=exchg.65).aspx
Exchange Database Recovery – Using eseutil commands (Note: It isn't from Microsoft, please pay attention to refer to it.)
http://msexchangeguru.com/2009/07/12/exchange-database-recovery-using-eseutil-commands/
Hope it helps.
If there any problems, please feel free to let me know.
Best regards,
Amy
Amy Wang
TechNet Community Support
" If the restore process doesn't succeed, Restore.env won't be generated. "
thank you for you reply.The restore process succeed,otherwise I can't do the soft recovery after the restoring the database,but can't see the restore.env
Please click the Mark as Answer button if a post solves your problem! -
Outlook 2007 Clients Cannot Access Free/Busy Calendar info. for Exchange 2010 Mailbox
Hi:
I have Outlook 2007 clients that cannot access Free/Busy Calendar info. for Exchange 2010 mailboxes. They receive error like "...you do not have appropriate permissions..."
If those same users logon to a machine running Outlook 2010 then they can view the free/busy info. of the other user's mailbox, so I believe the permissions are set correctly on the mailbox to allow the viewing.
Any insights are greatly appreciated!
Thank you!
Bob Herman IT TropolisHi Herman,
As you said, it seems users have proper permissions on mailbox.
Please make sure users has Reviewer permission on Outlook 2007.
Please try to run Outlook 2007 under safe mode or re-create profile.
Also try to turn Outlook 2007 to Exchange Online mode from Cached mode.
Thanks
Mavis Huang
TechNet Community Support -
Configuration for LDAP IP Address and Port for Exchange 2010
Let's say Exchange 2010 is installed on a computer that is joined to a domain. However, I would like to redirect LDAP authentication to another IP address and another port like how sharepoint implement it below
http://sharepoint.stackexchange.com/questions/33540/ldap-authentication-connection-string
Is it possible to do the equivalent for Exchange 2010?
Note: I would like to do this without installing any Edge Transport server or Microsoft Forefront TMGThe question I would need to ask is "Why would you need to do this?" I ask because Exchange requires an Active Directory account for authentication. That account may have permissions from some other directory (as in a linked mailbox),
but the account is used to find it. For SharePoint, you can authenticate to other directories directly. -
Mails blocked in queue the moment forefront for exchange 2010 started
Hi,
We have newly installed Forfront protection 2010 for Exchange 2010 installed in our exchange 2010 Edge Server.
Mails got struck in the Queue immediatly after the forefront installations.
Mailflow works properly one we unhook the forefront from Exchange.
need to enable the forefront. Got struck in these. How to proceed up further.
Thanks,
PradeepHi,
Please compare your configuration with the following blog or video. These might help.
http://araihan.wordpress.com/2010/03/15/forefront-protection-2010-how-to-install-and-configure-forefront-protection-2010-for-exchange-server-2010step-by-step/
http://www.youtube.com/watch?v=b2BgTmeXwUs
(Note: Microsoft provides third-party contact information to help you find technical support. This contact
information may change without notice. Microsoft does not guarantee the accuracy of this third-party contact information.)
Best Regards,
Joyce
We
are trying to better understand customer views on social support experience, so your participation in this
interview project would be greatly appreciated if you have time.
Thanks for helping make community forums a great place. -
Forefront for exchange 2010 - how long?
Hi there.
Read this article: http://blogs.technet.com/b/server-cloud/archive/2012/09/12/important-changes-to-forefront-product-roadmaps.aspx
I would have additional question.
Our company is MS Gold Partner and we need to renew our yearly license every year around AUGUST.
We are thinking about changing our SPAM filter external gateway with exchange edge, but as we can see from that article, you Will be unable to renew it license after December 2015.
I know that Microsoft offers online Forefront protection but that is not option in our case because of data sensitivity.We need an answer how long we Will be able to get updates regarding forefront for exchange 2010 and be licensed ok?
I guess after 2015 december Forefront Exchange 2010 Will no longer recieve spam updates thru Windows update, right?
And also engines Will not be updated after that date?
Is this the correct view and understanding?
with best regards
bostjancHi Bostjanc,
>>how long we Will be able to get updates regarding forefront for exchange 2010 and be licensed ok?
I think you must have seen the information below in that blog.
For current customers, Microsoft will continue to support the subscription through Dec.31, 2015. If customer subcriptions expire before Dec.31, 2015, and annot be renewed because the product is no longer offered, these products will continue to be supported
through that date in order to provided with customers sufficient time to move to alternative solutions.
You could also check the following blog.
License extension for End-of-Life Antigen/Forefront products
Note: Microsoft provides third-party contact information
to help you find technical support. This contact information may change without notice. Microsoft does not guarantee the accuracy of this third-party contact information.
If the information above still cannot resolve your questions, please contact Microsoft to get definitive answers.
Best Regards,
Joyce
We
are trying to better understand customer views on social support experience, so your participation in this
interview project would be greatly appreciated if you have time.
Thanks for helping make community forums a great place. -
Forefront protection for exchange 2010 - updates?
Installed Exchange EDGE server with Forefront Protection for Exchange 2010.
Installed hotfix update rollup 4 for forefront (I think it's the latest because I haven't found any newer).
We have basically left everything on default in forefront, and if we take a look on dashboard in gui we see this error message:
not all the antimalware engines selected in the forefront adminstration console for scanning have been enabled for updates.
where should we take a look whats not being updated. Please a little help.
with best regards,
bostjancHi.
Meanwhile I have also found information that it has been retired
https://social.technet.microsoft.com/Forums/forefront/en-US/400fa485-edc9-499f-8294-c196496437d8/not-all-of-the-antimalware-engines-enabled-for-updates-successfully-updated-at-the-last-attempt?forum=FSENext
bostjanc -
Disater Recovery for exchange 2010 plan in Cloud computing
Hi
We are using exchange 2010 for our messaging solutions. Please find below our current setup.
mainsite: MBX Server --- 1no --> Hyper V host
Hub&Cas ----- 1No --> Hyper V Host
Edge ---- 1NO --> Physical
DR site : MBX,Hub&CAS -- 1No --> Physical
Edge --- 1no --> physical
we enabled the DAG for our Mail box server and its replicating through a point to point link between our main site with DR site.
Now we are interested to enable our DR (disaster recovery) in MS cloud. Please let me know the process to go further .
how will the DAG or DB replicate to DR Site in cloud?. how its works?
much appreciated if any body have this setup .
Best Regards
Jagadeesan.S
O
JagsHello,
Kindly find the 3 types of plan for Exchange 2010 DR site. You can check all 3 plans and select as per your requirement.
1. Rebuild an Entire Database Availability Group plan
http://technet.microsoft.com/en-us/library/gg513521.aspx
2. Site Resiliency in Exchange 2010
http://www.msexchange.org/articles-tutorials/exchange-server-2010/management-administration/planning-deploying-testing-exchange-2010-site-resilient-solution-sized-medium-organization-part1.html
3. Exchange 2010 Cross Site DAG Disaster Recovery: Data Center/AD Site failure Part 1
http://msexchangeguru.com/2012/10/25/exchange-2010-dag-dr/
Deepak Kotian. MCP, MCTS, MCITP Exchange 2010 Ent. Administrator -
Transport Rule MessageSizeOver for exchange 2010
Hi
I have an exchange 2010 SP3 RU 3 environment with edge transport server implemented. I want to Have Transport rules to limit message size going outside/coming inside on edge transport.
I recently found a solution with -messagesizeover switch for new-trasportrule command in exchange 2013. Unfortunately its unavailable in exchange 2010.
I am wondering if there is a workaround or update for exchange 2010 to add this functionality.
Thanks in advance
FarhadHi,
On Exchange 2010, there is no MessageSizeOver parameter when you create a transport rule. But you can limit the sending and receiving message size of the whole Exchange organization using the following cmdlet.
Set-TransportConfig -MaxReceiveSize xxx -MaxSendSize xxx
If you want to limit the sending and receiving messages size for a specific mailbox, you can use the cmdlet below.
Set-Mailbox xxx –MaxSendSize xxx –MaxReceiveSize xxx
Hope it helps.
Best regards,
Amy Wang
TechNet Community Support -
Uninstall Forefront for Exchange 2010
I have acquired another spam filter appliance that will used instead of Forefront for Exchange 2010.
How do I uninstall Forefront for Exchange 2010 without any issues while still using Exchange 2010.
Basically the email will go through the email appliance filter then to Exchange. I want to deactivate or uninstall Forefront for Exchange with impacting my email services. Is it as simple as just uninstalling it?Hi,
About uninstalling Forefront for Exchange 2010, you could check the following article.
If spam filtering was enabled, the configurations in the corresponding antispam settings in Microsoft Exchange that were leveraged by FPE will be retained by their Exchange antispam counterparts after FPE is uninstalled. These settings include: Connection
Filtering, Sender ID Filtering, Sender Filtering, and Reciepient Filtering. To change these configuration settings you will need to modify them through the Exchange management console.
Uninstalling Forefront Protection 2010 for Exchange Server
Best Regards,
Joyce
We
are trying to better understand customer views on social support experience, so your participation in this
interview project would be greatly appreciated if you have time.
Thanks for helping make community forums a great place.
Maybe you are looking for
-
Any way to use cursor values inside other cursor by bulk collect?
hi, Is there any way to use cursor get_tables value insdide loop get column if i am using bulk collect in both cursors? I tried a lot but i am nt able to do it.kindly help... create or replace procedure MULTIPLE_CURSORS_PROC is v_owner varchar2(40);
-
Can't add file to library (no error, file can't be found)
Hi All- I hope I'm not asking a really stupid question. I have recently transfered my library to iTunes in my new Macbook (my first Mac), which went fine. Since then I have added some new music. Sometime between then and now (just a few days) somethi
-
Serial Numbers in third party system
Hi All, How to mange serial number in the third party sales scenario.In standard sales process we manage serial numbers at delivery level. But for Third party delivery will be done from vendor's place.But our client wants to keep a track of serial nu
-
Thought I would post the following just to get some general feedback - has to do with a somewhat strange response we've received from Apple in association with the recent iMac order: My wife and I placed an order for a brand-new 27 inch iMac 13 days
-
i have created custom classloader. now i want to unload classes those are loaded by custom classloader. i know that the classes will be unloaded when its classloader is unloaded. so i want to know how to unload cusotm classloader. In ClassLoader clas