ASA has to be failed over when primary ISP goes down.

Similar Messages

• Secondary DNS failing to redirect clients when Primary DNS goes down

  I have a single domain with two Windows 2008 servers, DC1 (physical) and DC2 (virtual).  Both servers run DNS and are GC servers, and the entire domain is on the same subnet (192.168.0.x). 
  All clients on the network are configured to use DC1 as primary DNS, DC2 as secondary DNS. 
  DHCP is enabled only on DC1.  (This might be part of the issue, not sure).
  The problem is that when DC1 goes down for a reboot or repair, we lose access to the internet from our clients.  Trying to pull up any website results in a "Page cannot be displayed" error.  DC2 is available during this time and can be
  pinged from any client but does not resolve DNS requests, even if I specify it as the primary DNS server on one of my workstations.  However I can log on to DC2 locally and browse the web. 
  Here are the results of a DCdiag /dnsall from DC2 (I bolded areas of concern):
  Directory Server Diagnosis
  Performing initial setup:
     * Connecting to directory service on server DC2.
     * Identified AD Forest.
     Collecting AD specific global data
     * Collecting site info.
     Calling ldap_search_init_page(hld,CN=Sites,CN=Configuration,DC=mydomain,DC=com,LDAP_SCOPE_SUBTREE,(objectCategory=ntDSSiteSettings),.......
     The previous call succeeded
     Iterating through the sites
     Looking at base site object: CN=NTDS Site Settings,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=mydomain,DC=com
     Getting ISTG and options for the site
     * Identifying all servers.
     Calling ldap_search_init_page(hld,CN=Sites,CN=Configuration,DC=mydomain,DC=com,LDAP_SCOPE_SUBTREE,(objectClass=ntDSDsa),.......
     The previous call succeeded....
     The previous call succeeded
     Iterating through the list of servers
     Getting information for the server CN=NTDS Settings,CN=DC1,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=mydomain,DC=com
     objectGuid obtained
     InvocationID obtained
     dnsHostname obtained
     site info obtained
     All the info for the server collected
     Getting information for the server CN=NTDS Settings,CN=DC2,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=mydomain,DC=com
     objectGuid obtained
     InvocationID obtained
     dnsHostname obtained
     site info obtained
     All the info for the server collected
     * Identifying all NC cross-refs.
     * Found 2 DC(s). Testing 1 of them.
     Done gathering initial info.
  Doing initial required tests
     Testing server: Default-First-Site-Name\DC2
        Starting test: Connectivity
  * Active Directory LDAP Services Check
  Determining IP4 connectivity
  Determining IP6 connectivity
  * Active Directory RPC Services Check
  ......................... DC2 passed test Connectivity
  Doing primary tests
     Testing server: Default-First-Site-Name\DC2
        Test omitted by user request: Advertising
        Test omitted by user request: CheckSecurityError
        Test omitted by user request: CutoffServers
        Test omitted by user request: FrsEvent
        Test omitted by user request: DFSREvent
        Test omitted by user request: SysVolCheck
        Test omitted by user request: KccEvent
        Test omitted by user request: KnowsOfRoleHolders
        Test omitted by user request: MachineAccount
        Test omitted by user request: NCSecDesc
        Test omitted by user request: NetLogons
        Test omitted by user request: ObjectsReplicated
        Test omitted by user request: OutboundSecureChannels
        Test omitted by user request: Replications
        Test omitted by user request: RidManager
        Test omitted by user request: Services
        Test omitted by user request: SystemLog
        Test omitted by user request: Topology
        Test omitted by user request: VerifyEnterpriseReferences
        Test omitted by user request: VerifyReferences
        Test omitted by user request: VerifyReplicas
        Starting test: DNS
  DNS Tests are running and not hung. Please wait a few minutes...
  See DNS test in enterprise tests section for results
  ......................... DC2 passed test DNS
     Running partition tests on : ForestDnsZones
        Test omitted by user request: CheckSDRefDom
        Test omitted by user request: CrossRefValidation
     Running partition tests on : DomainDnsZones
        Test omitted by user request: CheckSDRefDom
        Test omitted by user request: CrossRefValidation
     Running partition tests on : Schema
        Test omitted by user request: CheckSDRefDom
        Test omitted by user request: CrossRefValidation
     Running partition tests on : Configuration
        Test omitted by user request: CheckSDRefDom
        Test omitted by user request: CrossRefValidation
     Running partition tests on : mydomain
        Test omitted by user request: CheckSDRefDom
        Test omitted by user request: CrossRefValidation
     Running enterprise tests on : mydomain.com
        Starting test: DNS
  Test results for domain controllers:
   DC: DC2.mydomain.com
  Domain: mydomain.com
  TEST: Authentication (Auth)
  Authentication test: Successfully completed
  TEST: Basic (Basc)
                    Microsoftr Windows Serverr 2008 Standard 
  (Service Pack level: 2.0)
  is supported
  NETLOGON service is running
  kdc service is running
  DNSCACHE service is running
                    DNS service is running
  DC is a DNS server
  Network adapters information:
  Adapter [00000006] Intel(R) PRO/1000 MT Network Connection:
  MAC address is 00:0C:29:91:59:68
  IP Address is static
  IP address: 192.168.0.249
  DNS servers:
  192.168.0.105 (DC1.mydomain.com.) [Valid]
  127.0.0.1 (DC2) [Valid]
  The A host record(s) for this DC was found
  Warning: The AAAA record for this DC was not found
  [Error details: 9501 (Type: Win32 - Description: No records found for given DNS query.) - mydomain.com]
                    The SOA record for the Active Directory zone was found
  The Active Directory zone on this DC/DNS server was found primary
  Root zone on this DC/DNS server was not found
  TEST: Forwarders/Root hints (Forw)
  Recursion is enabled
  Forwarders Information:
  192.168.0.105 (DC1.mydomain.com.) [Valid]
  192.168.0.7 (<name unavailable>) [Invalid (unreachable)]
   Error: Forwarders list has invalid forwarder: 192.168.0.7 (<name unavailable>)
  TEST: Delegations (Del)
  Delegation information for the zone: mydomain.com.
  Delegated domain name: _msdcs.mydomain.com.
  DNS server: DC1.mydomain.com. IP:192.168.0.105 [Valid]
  TEST: Dynamic update (Dyn)
  Test record _dcdiag_test_record added successfully in zone mydomain.com
  Test record _dcdiag_test_record deleted successfully in zone mydomain.com
  TEST: Records registration (RReg)
  Network Adapter
  [00000006] Intel(R) PRO/1000 MT Network Connection:
  Matching CNAME record found at DNS server 192.168.0.105:
  a32fcfbd-16bb-4697-a23d-20fc3b8c274c._msdcs.mydomain.com
  Matching A record found at DNS server 192.168.0.105:
  DC2.mydomain.com
  Warning:
  Missing AAAA record at DNS server 192.168.0.105:
  DC2.mydomain.com
  [Error details: 9501 (Type: Win32 - Description: No records found for given DNS query.)]
  Matching  SRV record found at DNS server 192.168.0.105:
  _ldap._tcp.mydomain.com
  Matching  SRV record found at DNS server 192.168.0.105:
  _ldap._tcp.ac09921d-4553-475e-b25c-059742ac0552.domains._msdcs.mydomain.com
  Matching  SRV record found at DNS server 192.168.0.105:
  _kerberos._tcp.dc._msdcs.mydomain.com
  Matching  SRV record found at DNS server 192.168.0.105:
  _ldap._tcp.dc._msdcs.mydomain.com
  Matching  SRV record found at DNS server 192.168.0.105:
  _kerberos._tcp.mydomain.com
  Matching  SRV record found at DNS server 192.168.0.105:
  _kerberos._udp.mydomain.com
  Matching  SRV record found at DNS server 192.168.0.105:
  _kpasswd._tcp.mydomain.com
  Matching  SRV record found at DNS server 192.168.0.105:
  _ldap._tcp.Default-First-Site-Name._sites.mydomain.com
  Matching  SRV record found at DNS server 192.168.0.105:
  _kerberos._tcp.Default-First-Site-Name._sites.dc._msdcs.mydomain.com
  Matching  SRV record found at DNS server 192.168.0.105:
  _ldap._tcp.Default-First-Site-Name._sites.dc._msdcs.mydomain.com
  Matching  SRV record found at DNS server 192.168.0.105:
  _kerberos._tcp.Default-First-Site-Name._sites.mydomain.com
  Matching  SRV record found at DNS server 192.168.0.105:
  _ldap._tcp.gc._msdcs.mydomain.com
  Matching A record found at DNS server 192.168.0.105:
  gc._msdcs.mydomain.com
  Warning:
  Missing AAAA record at DNS server 192.168.0.105:
  gc._msdcs.mydomain.com
  [Error details: 9501 (Type: Win32 - Description: No records found for given DNS query.)]
  Matching  SRV record found at DNS server 192.168.0.105:
  _gc._tcp.Default-First-Site-Name._sites.mydomain.com
  Matching  SRV record found at DNS server 192.168.0.105:
  _ldap._tcp.Default-First-Site-Name._sites.gc._msdcs.mydomain.com
  Matching CNAME record found at DNS server 192.168.0.249:
          a32fcfbd-16bb-4697-a23d-20fc3b8c274c._msdcs.mydomain.com
  Matching A record found at DNS server 192.168.0.249:
  DC2.mydomain.com
  Warning:
  Missing AAAA record at DNS server 192.168.0.249:
  DC2.mydomain.com
  [Error details: 9501 (Type: Win32 - Description: No records found for given DNS query.)]
  Matching  SRV record found at DNS server 192.168.0.249:
  _ldap._tcp.mydomain.com
  Matching  SRV record found at DNS server 192.168.0.249:
  _ldap._tcp.ac09921d-4553-475e-b25c-059742ac0552.domains._msdcs.mydomain.com
               Matching 
  SRV record found at DNS server 192.168.0.249:
  _kerberos._tcp.dc._msdcs.mydomain.com
  Matching  SRV record found at DNS server 192.168.0.249:
  _ldap._tcp.dc._msdcs.mydomain.com
  Matching  SRV record found at DNS server 192.168.0.249:
  _kerberos._tcp.mydomain.com
  Matching  SRV record found at DNS server 192.168.0.249:
  _kerberos._udp.mydomain.com
  Matching  SRV record found at DNS server 192.168.0.249:
  _kpasswd._tcp.mydomain.com
  Matching  SRV record found at DNS server 192.168.0.249:
  _ldap._tcp.Default-First-Site-Name._sites.mydomain.com
  Matching  SRV record found at DNS server 192.168.0.249:
  _kerberos._tcp.Default-First-Site-Name._sites.dc._msdcs.mydomain.com
             Matching 
  SRV record found at DNS server 192.168.0.249:
  _ldap._tcp.Default-First-Site-Name._sites.dc._msdcs.mydomain.com
  Matching  SRV record found at DNS server 192.168.0.249:
  _kerberos._tcp.Default-First-Site-Name._sites.mydomain.com
  Matching  SRV record found at DNS server 192.168.0.249:
  _ldap._tcp.gc._msdcs.mydomain.com
  Matching A record found at DNS server 192.168.0.249:
  gc._msdcs.mydomain.com
  Warning:
  Missing AAAA record at DNS server 192.168.0.249:
  gc._msdcs.mydomain.com
  [Error details: 9501 (Type: Win32 - Description: No records found for given DNS query.)]
  Matching  SRV record found at DNS server 192.168.0.249:
  _gc._tcp.Default-First-Site-Name._sites.mydomain.com
  Matching  SRV record found at DNS server 192.168.0.249:
  _ldap._tcp.Default-First-Site-Name._sites.gc._msdcs.mydomain.com
  Warning: Record Registrations not found in some network adapters
  TEST: External name resolution (Ext)
  Internet name www.microsoft.com was resolved successfully
  Summary of test results for DNS servers used by the above domain
  controllers:
  DNS server: 192.168.0.7 (<name unavailable>)
  1 test failure on this DNS server
  PTR record query for the 1.0.0.127.in-addr.arpa. failed on the DNS server 192.168.0.7              
  [Error details: 1460 (Type: Win32 - Description: This operation returned because the timeout period expired.)]
  DNS server: 192.168.0.105 (DC1.mydomain.com.)
  All tests passed on this DNS server
  Name resolution is functional._ldap._tcp SRV record for the forest root domain is registered
  DNS delegation for the domain  _msdcs.mydomain.com. is operational on IP 192.168.0.105
  DNS server: 192.168.0.249 (DC2)
  All tests passed on this DNS server
  Name resolution is functional._ldap._tcp SRV record for the forest root domain is registered
  Summary of DNS test results:
  Auth Basc Forw Del  Dyn  RReg Ext
  Domain: mydomain.com
  DC2                      
  PASS WARN FAIL PASS PASS WARN PASS
  ......................... mydomain.com failed test DNS
        Test omitted by user request: LocatorCheck
        Test omitted by user request: Intersite

  Looks like it may be trying to forward to a machine that's down (DC1 and another 192.168.0.7) and root hints aren't available.
  Check out this article:
  http://technet.microsoft.com/en-us/library/ff807391(v=ws.10).aspx
  See if you can enable DNS access through the firewall to the Internet if it's not already available.  Try to match whatever forwarder settings are on DC1, or remove them entirely and let the server resolve DNS from Internet root servers.  Alternativly,
  you could change your forwarder to a public DNS server you have access to, your ISP should supply this or you could test with something common like 4.2.2.2.
  Please remember, if you see a post that helped you please click "Vote As Helpful" and if it answered your question please click "Mark As Answer".
  SWC Unified Communications

• Fail over when queue manager is down

  Hi,
  I am implementing the MessageListener interface to receive messages from MQ. How will the JMS notify if the queue manager goes down for some reason. I need to capture the exception so that I can fail over to the secondary queue manager.
  Please reply back if you have any pointers. Your help would be much appreciated.
  Regards,
  Sunil

  If you register an ExceptionListener, you will be notified when connection to the JMS server is lost by a call to the onException() method.
  http://java.sun.com/j2ee/1.4/docs/api/javax/jms/ExceptionListener.html
  I've used this previously to attempt reconnection on a time interval for a specified number of retries.
  -Scott
  http://www.swiftradius.com

• How do the application servers connect the new database after failing over from primary DB to standby DB

  How do the application servers connect the new database after failing over from primary DB to standby DB?
  We have setup a DR environment with a standalone Primary server and a standalone Physical Standby server on RHEL Linux 6.4. Now our application team would like to know:
  When the primary DB server is crashed, the standy DB server will takeover the role of primary DB through the DataGuard fast failover. As the applications are connected by the primary DB IP before,currently the physical DB is used as a different IP or listener. If this is happened, they need to stop their application servers and re-configure their connection so the they coonect the new DB server, they cannot tolerate these workaround. 
  Whether does oracle have the better solution for this so that the application can automatically know the role's transition and change to the new IP without re-confige any connection and shutdown their application?
  Oracle support provides us the answer as following:
  ==================================================================
  Applications connected to a primary database can transparently failover to the new primary database upon an Oracle Data Guard role transition. Integration with Fast Application Notification (FAN) provides fast failover for integrated clients.
  After a failover, the broker publishes Fast Application Notification (FAN) events. These FAN events can be used in the following ways:
  Applications can use FAN without programmatic changes if they use one of these Oracle integrated database clients: Oracle Database JDBC, Oracle Database Oracle Call Interface (OCI), and Oracle Data Provider for .NET ( ODP.NET). These clients can be configured for Fast Connection Failover (FCF) to automatically connect to a new primary database after a failover.
  JAVA applications can use FAN programmatically by using the JDBC FAN application programming interface to subscribe to FAN events and to execute event handling actions upon the receipt of an event.
  FAN server-side callouts can be configured on the database tier.
  FAN events are published using Oracle Notification Services (ONS) and Oracle Streams Advanced Queuing (AQ).
  =======================================================================================
  Who has the experience and the related documentation or other solutions? we don't have the concept of about FAN.
  Thank very much in advance.

  Hi mesbeg,
  Thanks alot.
  For example, there is an application JBOSS server connecting the DB, we just added another datasource and put the standby IP into the configuration file except adding a service on DB side like this following:
          <subsystem xmlns="urn:jboss:domain:datasources:1.0">
          <datasources>
                  <datasource jta="false" jndi-name="java:/jdbc/idserverDatasource" pool-name="IDServerDataSource" enabled="true" use-java-context="true">
                      <connection-url>jdbc:oracle:thin:@<primay DB IP>:1521:testdb</connection-url>
                      <connection-url>jdbc:oracle:thin:@<standby DB IP>:1521:testdb</connection-url>
                      <driver>oracle</driver>
                      <pool>
                          <min-pool-size>2</min-pool-size>
                          <max-pool-size>10</max-pool-size>
                          <prefill>true</prefill>
                      </pool>
                      <security>
                          <user-name>TEST_USER</user-name>
                          <password>Password1</password>
                      </security>
                      <validation>
                          <valid-connection-checker class-name="org.jboss.jca.adapters.jdbc.extensions.oracle.OracleValidConnectionChecker"/>
                          <validate-on-match>false</validate-on-match>
                          <background-validation>false</background-validation>
                          <use-fast-fail>false</use-fast-fail>
                          <stale-connection-checker class-name="org.jboss.jca.adapters.jdbc.extensions.oracle.OracleStaleConnectionChecker"/>
                          <exception-sorter class-name="org.jboss.jca.adapters.jdbc.extensions.oracle.OracleExceptionSorter"/>
                      </validation>
                  </datasource>
                  <drivers>
                      <driver name="oracle" module="com.oracle.jdbc">
                          <xa-datasource-class>oracle.jdbc.OracleDriver</xa-datasource-class>
                      </driver>
                  </drivers>
              </datasources>
          </subsystem>
  If the failover is occurred, the JBOSS will automatically be pointed to the standby DB. Additional actions are not needed.

• Has anyone heard if and when they r going to come out with i-pod touch 5th generation

  Has anyone hear if and when they r going to come out with  i-pod touch 5th generation?

  Apple has made no announcement about any future models of iPod, and until they do there's nothing anyone here can tell you. We'll all just have to wait.
  Regards.
  Forum Tip: Since you're new here, you've probably not discovered the Search feature available on every Communities page, but next time, it might save you time (and everyone else from having to answer the same question multiple times) if you search a couple of ways for a topic, both in the relevant forums and in the Apple Knowledge Base, before you post a question.

• Is there a  requirement to restart the JMS/Weblogc Server everytime when the DB goes down?

  Question:
  When the Database is shutdown gracefully everything was fine.
  But when the Database is brought down with shutdown abort the MDB consumer will never consume messages from the topic again. And we need to restart the WebLogic Server in order to get the messages consumed again.
  So is there a requirement to restart the JMS/Weblogc Server everytime when the DB goes down? If not, what type of failures will require the JMS/WLS restart?

  On a DB failure, a WL JDBC store service will make a brief attempt to reconnect before shutting itself down along with any services that depend on the store. 
  It isn't necessary to restart the entire WebLogic Server JVM to bring the affected service(s) back if you can use the Automatic Service Migration feature.  ASM can automatically restart a failed service on a different WL Server in the same cluster, and/or can try a restart-in-place for the service if the service's original host WL Server JVM is still running.   The Automatic Service Migration (pdf) white-paper has a thorough discussion of this area.
  In addition to ASM, there's also a "whole server migration" option that can automatically restart or migrate an entire WL server.
  Tom

• IOException when remote client goes down in Linux

  Hello all -
  This my first post here. I have ran into a bit of an issue with some code I have written. I have written a small client/server application that works on the premise that if the remote application ends, the socket will be broken, and an IOException will be thrown. I then catch the IOException and then end the particular thread associated with that socket. This works fine in Windows, but when I kill the remote application in Linux, an IOException is never thrown on the server, it's as if the socket is still there even tho the application ended. I'm thinking there is something different that happens when I kill a process in Linux vs Windows. I have tried using the SIGINT, and SIGTERM switches for kill but they made no difference. Does anyone have any idea, admittedly I am a Linux noob, thanks!
  -Kam

  If the server is reading when the client goes down it won't get an IOException, it will get an EOS condition: read() returns -1, readLine() returns null, readXXX() for any other X throws an EOFException.

• How to display visited sites in a different color? For example, when I'm going down an ebay search list.

  How do I make settings so that visited sites have a different color hypertext? For example, when I'm going down an ebay search list I want to know what items I already viewed.

  * Make sure that the History is set to at least 1 day: Tools > Options > Privacy > History: "Remember visited pages for at least"
  * Make sure that you do not start Firefox in Private Browsing mode (Tools > Stop Private Browsing is grayed, see [[Private Browsing]])
  * To see all History and Cookie settings in Tools > Options > Privacy, choose the setting "Firefox will: Use custom settings for history"
  Your above posted system details show outdated plugin(s) with known security and stability risks.
  * Shockwave Flash 10.0 r12
  Update the [[Managing the Flash plugin|Flash]] plugin to the latest version.
  *http://www.adobe.com/software/flash/about/

• Http cluster servlet not failing over when no answer received from server

            I am using weblogic 510 sp9. I have a weblogic server proxying all requests to
            a weblogic cluster using the httpclusterservlet.
            When I kill the weblogic process servicing my request, I see the next request
            get failed over to the secondary server and all my session information has been
            replicated. In short I see the behavior I expect.
            r.troon
            However, when I either disconnect the primary server from the network or just
            switch this server off, I just get a message back
            to the browser - "unable to connect to servers".
            I don't really understand why the behaviour should be different . I would expect
            both to failover in the same manner. Does the cluster servlet only handle tcp
            reset failures?
            Has anybody else experience this or have any ideas.
            Thanks
            

  I think I might have found the answer......
  The AD objects for the clusters had been moved from the Computers OU into a newly created OU. I'm suspecting that the cluster node computer objects didn't have perms to the cluster object within that OU and that was causing the issue. I know I've seen cluster
  object issues before when moving to a new OU.
  All has started working again for the moment so I now just need to investigate what permissions I need on the new OU so that I can move the cluster object in.

• Firewall keeps failing over when IPS fails

  Is there a way to prevent the firewall from failing over if the IPS fails, I do not have it selected as a critera but I've been having some issues with the IPS module and the firewall keeps failing over.

  Hello Matt,
  There is an enhancement request for this:
  http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method=fetchBugDetails&bugId=CSCsm81086
  But there isn't an ETA yet. You can save the bug to get updates.
  Regards,
  Felipe
  Security Team.

• How to setup a backup web application in iis When primary application is down

  This is my Scenarios:
  Scenario 1:
  I have a web application(www.abc.com) hosted in IIS windows server 2008 R2. we use the the application over the intranet connected with LAN. we have the same application hosted in IIS in Different Name too.
  Primary : www.abc.com ,  Backup : www.abc1.com
  If the primary application is down for any reason the backup application should handle the request for the primary one.
  How to monitor the Primary application for unexpected DOWN and how to UP the backup automatically ones it detected the down of primary ?
  Scenario 2:
  This scenario is meant of Fail-safe server setup, I googled but can't get a clear brief idea.
  Note : web Application is used inside the organisation . can't accessed via internet
  Same as First Scenario But the the application hosted in two different servers at same location/Different location with different IP address 
  If the primary Server is down for any reason the backup Server should handle the request for the primary one.
  How to monitor the Primary Server for unexpected DOWN and how to UP the backup automatically ones it detected the down of primary ?
  Is there any free tools are available ?
  Kindly provide me solution for these Scenarios .

  Hi Rajakrishnan17
  1. Your question is more suited for Windows Server forum, not for Windows 7.
  2. What you try to achieve cannot be configured with out-of-the-box features in Windows 7.
  3. You may try to see if Network LoadBbalancing (NLB) feature in Windows Server 2008 and later fits your requirements.

• Unable to access DFS shares when server 1 goes down

  Hello all,
  I have a test domain I am building in order to prepare for a new domain we are going to create. We currently have an SBS 2003 that is reaching the end of its' life. We are going to start fresh. I have setup domain-based DFS along with DFS folder replication
  for each of the folders. So far, all is working ok, up to this point.
  Replication is occurring as it should and my Hyper-V test machines can connect to the mapped drives via the DFS namespace.
  \\domain\namespace\target folder
  However, once I shut down the primary server (SRV01) I am no longer able to access the shares. The namespace servers tab on the center window of the namespace MMC, has both SRV01 and 02 listed. I receive no errors except "Unable to connect to \\domain\namespace\target
  folder because it is unavailable". It is not "failing over" to the secondary available server.
  Once I power SRV01 back up, connectivity is then restored to the folders and mapped drives. Is there something I should check for, or am missing?
  Any and all insight is appreciated.
  Dario Garcia

  Hi,
  1. Run DFSUTIL /pktinfo to see if the referral target is still the primary server when it is actually down.
  If so, run DFSUTIL /pktflush to flush the cached information and try to access the namespace again.
  2. If 1 cannot help, whether DNS is also configged on primary server? If so, as it is down,
  \\domain may not be recognized.
  TechNet Subscriber Support in forum |If you have any feedback on our support, please contact [email protected]

• ACE slowness issue when one server goes down

  Hi,
  We are having two application servers.Both are load balanced using ACE.
  When we bring down one server, we find that when we upload some files into the second application server, its too slow.
  But when primary server comes up again the performance increases.This issue happens only when we bring the primary server down.
  We are using cookie based stickiness.Any ideas where we can look into.
  Rgds.,
  Sachin

  Depending on the load-balancing algorithm or predictor that you configure, the ACE performs a series of checks and calculations to determine which server can best service each client request. The ACE bases server selection on several factors including the source or destination address, cookies, URLs, HTTP headers, or the server with the fewest connections with respect to load.
  http://www.cisco.com/en/US/docs/app_ntwk_services/data_center_app_services/ace_appliances/vA1_7_/configuration/slb/guide/classlb.html

• 2012 R2 iSCSI CSV not failing over when storage NICs disabled (no redirected access)

  We have a couple of simple two node Hyper-V clusters. They are fresh installs with 2012R2 (running on Cisco UCS blades).
  They are configured with dedicated NIC for Management, 2x dedicated NICs for storage (using MPIO and NetApp DSM) and then a trunk for VM traffic with virtual adapters for CSV, Live Migration and Heartbeat. Binding orders all set and priorities.
  With storage, we have a 1GB Quorum disk and then a temporary 500GB CSV.
  All is healthy and happy, I can move VMs around, move the CSV around, fail hosts etc and all works fine.
  HOWEVER..... If I disable BOTH of the iSCSI NICs on one of the host (the host that currently owns the CSV), then all hell breaks out. I would have expected that the CSV would go into redirected mode and use the connection from the other node? The CSV disappears
  from FCM temporarily, then comes back and goes red (Offline). It doesn't even try to failover to the other node. If I manually move it over to the other node then the CSV comes straight back online.
  Watching in Disk Manager on both nodes I can see on the effected host that the volumes do not disappear once it looses the iSCSI connection. I'm pretty sure that with the iSCSI disconnected (iscsicpl showing "reconnecting" state) that those disks
  should disappear? But perhaps that is my problem here.
  Is the expected behavior or does it sound wrong? If so, any ideas?
  Also - I've noticed that in FCM, my cluster networks all go to a state of showing a red question mark over them with the exception of the management NIC. It feels like the cluster is having a fit and failing to communicate properly once I disable the iSCSI
  NICs.
  Any input greatly appreciated!

  I think I might have found the answer......
  The AD objects for the clusters had been moved from the Computers OU into a newly created OU. I'm suspecting that the cluster node computer objects didn't have perms to the cluster object within that OU and that was causing the issue. I know I've seen cluster
  object issues before when moving to a new OU.
  All has started working again for the moment so I now just need to investigate what permissions I need on the new OU so that I can move the cluster object in.

• Unable to login to Switch & Router through secondary Acs ,when primary ACS is down.

  Dear All,
    i have configured primary ACS in DC data center and secondary ACS in DR data center, i have configured replication , and it is working well, but when we put down primary ACS , we are unable to login in switch and router through secondary ACS , i ahve  dedicated link between core dc sw to core dr sw through which all traffic is getting replicated . All user , mgmt vlan are created in FWSM firewall.Kindly help.
  Regards
  Amit Kulshrestha

  Hi Bro
  I'm assuming you've configured your ACS correctly and the Cisco network devices correctly. Perhaps, this could be a bug. The reason I say this is because last week, I was implementing 2 units of Cisco ACS 1121 v5.3 (in HA mode) for a client, and i had similar issues myself. When I down the primary ACS, I'm unable to login to my network devices, eventhough my secondary ACS is UP and PINGable from all network devices.
  Hence, I downloaded and applied the latest cummulative patch from the CCO website 5-3-0-40-4.tar.gpg (Release Date: 27/May/2012) and my problem solved.
  Perhaps, your ACS version isn't 5.3, but the morale of the story here is, maybe patching is required for your case!!
  Please do let me know the outcome. May the force be with you, bro!