Packets sent out the wrong Interface on Hyper-V 2012 Failover Cluster
Here is some background information:
2 Dell PowerEdge servers running Windows Server 2012 w/ Hyper-V in a Failover Cluster environment. Each has:
1 NIC for Live Migration 192.168.80.x/24 (connected to a private switch)
1 NIC for Cluster Communication 192.168.90.x/24 (connected to a private switch)
1 NIC for iscsi 192.168.100.x/24 (connected to a private switch)
1 NIC for host management with a routable public IP (*connected to corp network) w/ gateway on this interface
1 NIC for Virtual Machine traffic (*connected to corp network)
All NICs are up, we can ping the IPs between servers on the private network and on the public facing networks. All functions of hyper-v are working and the failover cluster reports all interfaces are up and we receive no errors. Live migration
works fine. In the live migration settings i have restricted the use of the 2 NICs (live migration or cluster comm).
My problem is that our networking/security group sees on occasion (about every 10 minutes with a few other packets thrown in at different times) syn packets that are destined for the 192.168.80.3 interface goes out of the public interface and is dropped
at our border router. These should be heading out of the 192.168.80.x or 192.168.90.x interfaces without ever hitting our corporate network. Anyone have an idea of why this might be happening? Traffic is on TCP 445.
Appreciate the help.
Nate
Hi,
Please check live migration and Cluster Communication network settings in cluster:
In the Failover Cluster Manager snap-in, if the cluster that you want to configure is not displayed, in the console tree, right-click Failover Cluster Manager, click Manage a Cluster, and then select or specify the cluster that you want.
If the console tree is collapsed, expand the tree under the cluster that you want to configure.
Expand Networks.
Right-click the network that you want to modify settings for, and then click Properties.
There are two options:
Allow cluster network communication on this network-- Allow clients to connect through this network
Do not allow cluster network communication on this network
If the network is used only for cluster node communication, clear “Allow clients to connect through this network” option.
Check that and give us feedback for further troubleshooting, for more information please refer to following MS articles:
Modify Network Settings for a Failover Cluster
http://technet.microsoft.com/en-us/library/cc725775.aspx
Lawrence
TechNet Community Support
Similar Messages
-
Packets sent out on wrong interface
We have a BM 3.9 SP1 server configured with two public interfaces which are
Interface 1
XXX.XXX.138.178 mask 255.255.255.240 with a secondary IP address of XXX.XXX.138.179 and is has the default route of XXX.XXX.138.177.
Interface 2
XXX.XXX.146.218 mask 255.255.255.248 with a secondary IP address of XXX.XXX.146.219.
The two interfaces are connected to different physical networks that use different routers. Static and Dynamic NAT is enabled on both interfaces and there is a static NAT to an internal machine for the secondary addresses. NAT Dynamic passthrough is set to on. There is a static route defined in Inetcfg for XXX.XXX.3.166 with the next hop on XXX.XXX.146.217 which is the gateway address for Interface 2. However when I look at TCPCON IP Routing table that static route does not show up.
The problem is that the server receives a packet on the secondary address of interface 2 (XXX.XXX.146.219) from address XXX.XXX.3.166 forwards it to the internal machine which replies but the reply is sent out the default route which is on Interface 1. After taking a packet trace with Wireshark I can see that the outgoing packet has the wrong IP address (XXX.XXX.146.219) for that network which causes it to be dropped.
Is there a limit to the number of static routes that the BM server can have? I have about 30 defined. Why would the static route show up INETCFG but not in TCPCON-IP ROUTING TABLE? I can add the static route manually in the TCPCON IP Routing Table but it does not seem to effect the delivery of the packets. They are still sent out the default route.Is it possible you have an incorrect subnet mask for the problem static
route?
This should work. I've done it myself, and I have one of my client's
systems doing this now for 4-5 years. S2S VPN on a dedicated NIC and
T1, default route pointing to the other public nic's router. Added
static route to the remote VPN server public address with next
hop=router of VPN NIC, and it's fine.
If the route doesn't show up in TCPCON, I think there could be a typo
in the route you entered or the public IP?
Craig Johnson
Novell Support Connection SysOp
*** For a current patch list, tips, handy files and books on
BorderManager, go to http://www.craigjconsulting.com *** -
Verizon Sent me the wrong EIN numbered phone and has been nearly 3 months and still no refund
I am still not getting my money back for the phone I ordered and paid for via credit card on 11/29/2010.
You guys sent me the wrong phone with the wrong EIN number. So I was told by my local Verizon store on 11/30/2010 to send it back (Which I did) and a new phone would replace it (received new phone), The replacement phone was billed to my Verizon account and I was told I would get my money back once the first phone was returned to you guys,
I shipped the first phone back via FEDEX on 12/3/2010.
I contacted customer service on 12/31/2010 and told them I hadn’t gotten my refund yet (REF# 70331329 and was told expect a refund in 24 to 48 Business hours.
I contacted Customer service (Greta) on 2/6/2011, and she said she saw that the phone had been returned and said it should show up on the next billing cycle.
I got a new bill on 2/25/2011 and no refund was on the bill.
I contacted customer service on 2/26/2011 and talked to Jeff, he said He would fill out a TOPS request and he would call me back on 3/2/2011 and as of 3/21/2011 no call has been received from him.
I called customer service (Aman) on 3/6//2011 and he said I should get my money back in 24-72 hours and I haven’t yet.
I emailed the Verizon/Boeing contact and he said he has “no teeth “ to do anything about it, and I would need to elevate to at least supervisor level and they should be able to do something about this ………….and he is sorry he can’t help
It has been nearly 3 months and 4 phone calls by me and I have been told I should get the money back 5 times now. And still no return of my money. I think this issue needs elevating to the top of the company if necessary as this has become a joke of Customer Service from your company.
It seems that the CUSTOMER is not important to Verizon anymore.
Please stop giving me the Customer Service run around and actually return my money that I had to pay for the wrong phone that you sent me and then had me send it back.
Do I need to get legal advice or the Attorney General involved to resolve this?
Once happy customer
TerryRofl... 1) peer to peer forum... as much fun as your righteous rage is we can't really help (although you will probably get a pm from a rep... keep in mind you can do the same thing throught the 'contact us' link in the upper right). 2) Just as confirmation... you did pay for the second phone separately? 3) Call in, talk to a sup and tell them the situation in a calm polite manner. Have them double check to make sure the phone is showing in the warehouse... that the fedex order is showing as having been returned and that some return refund requests have been submitted... If all of that has been done, and they show it has been returned then some form of credit should be able to be worked out. Oh, I should also say that you may not need to go to a sup. A lot of reps are more than able to take care of this, gauge the confidence level of the rep for the first few minutes (along with how well they are willing to listen to you) before you decide to sup up.
-
Question sent to the wrong boards
Hi,
There have been a number of questions posted into the wrong boards recently. ( I am not getting at any one).
So here is the scenario:
You have entered the Forum, e.g. you have selected NI Discussion Forums, you can not post a question at this stage.
You have to actually select one one the boards.
So you have a Data Acquisition question. You choose Hardware because its a hardware related question and you select Multifunction DAQ because that seems to be the best fit.
Ok , now you select New Message and you follow the Steps, by firstly doing a search.
The results come back and either there are no results or the results do not answer your question.
So you post your question and you enter the screen that allows you to enter your question in full. When it enters this screen the, the boards is already pre-selected ie Multifunction DAQ, so you dont have to change this.
Question now entered and spell checked etc.. You select one of the check boxes so you get notified when some one posts an answer and Press the Submit Post. Then sit back and wait.
Your posts ends up in the TestStand Forums!!!!!
At what time in the process did you change the selected message board!!!!
Any thoughts any one, does the process need tweaking, or is it just "its been along day, you have been beating you head against the brick-wall and the problem wont go away".
Regards
Ray Farmer
Regards
Ray FarmerRay and friends -
This is the first I have heard about the apparent epidemic of posting
to the wrong boards. From your description, it's so misleading and it
must be incredibly frustrating!
I have made several test posts using different browsers and haven't
been able to reproduce this behavior yet. My next approach will
be to tinker with the internet browser tools to see if they have an
impact on why the messages are being sent to the wrong boards.
Can you help me narrow it down at all any more? If we can figure
out what makes the process repeatable, that will help us get to a
solution faster.
We are already working with the forum developers on the repeated posts
problem. We are continuously looking for examples to help prove
the size of the issue as well as have a hefty set of examples to work
with.
Molly K.
Web Support & Operations Manager
National Instruments -
I entered the incorrect password for my home wifi network, and now I can't change it. How do I clear out the wrong password so that I can enter a correct one?
Settings > wi-fi then tap on the little blue arrow next to the network you want to change. You have to tap on the blue arrow and not on the name.
Now at the top tap on "forget this network".
After that, the iPhone will think your home network is a new network and will ask you for the password to connect. -
Our 2 wins server just started throwing these errors, twice a minute: WINS received a packet that has the wrong format. For example, a label may be More than 63 octets
No changes were done to any of the DC's. We are running Window 2008 and 2012 wins and they are replication partners.
I found this article but not useful in this case.
https://social.technet.microsoft.com/Forums/windowsserver/en-US/9b246bef-9469-43e8-9ae9-7c645d739789/wins-error-event-id-4119?forum=winserverDS
Did not find to be helpful.
I restarted the services. Even read about the 2 reg keys:
VersCounterStartVal_HighWord
VersCounterStartVal_LowWord
No luck. Anything I can look at or do to stop these errors?You might want to check with your network team. It might be something to do with the switches: https://msdn.microsoft.com/en-us/library/ms829701.aspx
By the way, in case you do not have an application that does not support DNS, it might be worth to rely only on DNS resolution in your environment.
This posting is provided AS IS with no warranties or guarantees , and confers no rights.
Ahmed MALEK
My Website Link
My Linkedin Profile
My MVP Profile -
So my phone broke, so I took it to the verizon store and looked at new phones. I then went home and ordered a phone over my landline. I was told exactly how much the phone would cost. I was told I would recieve my upgrade and they would be really nice and include a credit for the mail in offer.Oh great I said I will take it! then they sent me a phone I never ordered!!!so I called them and said hey you sent me the wrong phone, and they said oh no problem we will make notes in your account and please take it to the nearest bverizon store to just exchange it for the phone you actually ordered. So I happily go to the verizon store and ten hours later i still have no phone.they refused to honor my online price in the store!they said they would be happy to give me the phone i ordered but now it would cost me 149.99 instead of the price I ordered it for. This is ILLEGAL you cannot ship the wrong item and then charge the customer 149.99 to exchange the wrong item for the proper item IT IS ILLEGAL it is called bait and switch and is the basis for a lawsuit. I have been without a phone for a week, and they are now checking the recorded phone call to verify the deal they made!what?
You should have required them to replace the phone via mail. The mail-order store and the brick & mortar stores are separate entities and often have different pricing and/or rebate requirements.
Good luck with your lawsuit. -
Server 2008 DHCP is handing out the wrong DNS server.
We have two new 2008 DC that handles, DNS, DHCP and WINS. Our DHCP scopes have been migrated to these servers. We are seeing some random issues where clients are using the new dhcp server but the old dns server information is listed for the some systems. We discover this by using network monitor on the old DC, DNS, DHCP server. Once the client performs a ipconfig /renew, the problem is corrected. Any ideas?
Hi BrianAuH20,
Thank you for posting here.
Based on your description, I understand that your Windows 2008 DHCP server hands out the wrong DNS server address.
To troubleshoot this issue, please perform the follow steps to see whether the clients retrieve the right DNS server address.
1. Temporarily make the old DC, DNS, DHCP server offline.
2. Check the new 2008 DHCP server setting.
i. In the DHCP console tree, under Scope [172.16.0.0] SS Scope, right-click Scope Options, and then click Configure Options.
ii. On the Advanced tab, verify that Default User Class is selected next to User class.
iii. Select the 006 DNS Servers check box, in IP Address, under Data entry, type DNS Server IP address, and then click Add.
iv. Select the 015 DNS Domain Name check box, in String value, under Data entry, type your domain's FQDN name, and then click OK.
3. Restart the DHCP service.
For more information, you may refer to:
http://technet.microsoft.com/en-us/library/ee404786(WS.10).aspx
Hope this helps.
Sincerely,
Wilson Jia
This posting is provided "AS IS" with no warranties, and confers no rights. -
Hello,
I am trying to connect to an external MySQL database from within a bundle.
But I keep getting this error:
Could not get JDBC Connection; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Communications link failure Last packet sent to the server was 0 ms ago.)
These are the details of my bundle:
1) Spring bundle(using Spring DM)
2) MySQL database is at port 7046 so my bean is as below:
<bean id="dataSource" class="org.apache.commons.dbcp.BasicDataSource">
<property name="driverClassName" value="com.mysql.jdbc.Driver" />
<property name="url" value="jdbc:mysql://instance13550.db.xeround.com:7046/jas" />
<property name="username" value="mysql" />
<property name="password" value="mysql" />
</bean>
My bundle connects to the mysql database from withina local felix installation. But when I put the same bundle within CQ I get the error.
Please help.
KaranI dont know the answer, but if you google for this, some articles listed might help:
re: "Communications link failure Last packet sent to the server was"
Note: I use 're:' which is short for 'reply',
I think you will also be better off using preparedStatements. Dont forget to use preparedStatement.clearParameters() just before preparedStatements.setString() items in the loop
Also, I question why you need to test having 1000 test users all banging away at your application at once. Chances are, most will be staring at your web page and only a few will ever hit the update/insert button
within the same 100 milliseconds or so that your process takes to update. -
Hi everyone,
I have 2x physical servers running Hyper-V 2012 R2. Each hosts several virtual machines. The VHDs of the VMs are stored on several dedicated physical disks to have a performance boost. For exampe if VM A has two VHDs attached I made sure that the VHDs are
on different physical disks to have them not slow-down each other in case of intensive disk accesses.
So far so good. I was looking forward to the replication-feature. The idea is to have the two physical servers have their primary running VMs being replicated to the other physical server and vice-versa. I was hoping to have the chance to choose for each
individual VM where the replicated VHD will be stored. But instead I can only see the one location/path which is configured in Hyper-V Manager when I activate the replication-feature on the server.
Is there by any chance a way how to select the storage location for each VHD/VM if using the replication-feature of Hyper-V 2012 R2?
Thanks in advance.
Cheers,
SebastianSecondly, you could replicate different VMs to different storage locations to perform some of the disk balancing you are trying to perform. Lastly, you could copy the vhd file to a different location
before starting the VM.
.:|:.:|:. tim
Hi Tim,
thanks for the reply. Sorry, but I had some other tasks to take care of, so I wasn't paying enough attention to this thread.
The part I quoted from your reply sounds exactly like the action I'd like to perform, but as you pointed out before this should not be possible.
How can I perform the action (replicating each VM to a storage location) as you mentioned secondly? To sum it up again:
2x physical machines carrying severel HDDs
8+ VMs spread to run on the 2x servers
when setting up replication I can only set the storage-location from server A on B and vice versa B on A
Thanks again for your reply.
Cheers,
Sebastian -
We are getting ready to migrate from server core 2008 r2 hyper-v with failover cluster volumes on an iscsi san to server core 2012 r2 hyper-v with failover cluster volumes on a new iscsi san.
I've been searching for a "best practices" article for this but have been coming up short. The information I have found either pertains to migrating from 2008 r2 to 2012 r2 with failover cluster volumes on the same hardware, or migrating
to different hardware without failover cluster volumes.
If there is anyone out there that has completed a similar migration, it would be great to hear any feedback you may have on your experiences.
Currently, my approach is as follows:
1. Configure new hyper-v with failover cluster volumes on new SAN with new 2012 r2 hostnodes and 2012 r2 management server
2. Turn off the virtual machines on old 2008 r2 hyper-v hostnodes
3. Stop the VMMS service on the 2008 r2 hostnodes
4. copy the virtual machine files and folders over to the new failover cluster volumes
5. Import vm's into server 2012 r2 hyper-v.
Any feedback on the opertain I have in mind would be helpful.
Thank you,
RobHi Rob,
Yes , I agree with that "file copy " can achieve migration.
Also you can try "copy cluster wizard " :
https://technet.microsoft.com/en-us/library/dn530779.aspx
Best Regards,
Elton Ji
Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact [email protected] . -
Symantec Antivirus Best Practice for Hyper-v 2012 R2 Cluster
Hi Team ,
I am Working with Hyper-v 2012 R2 Cluster with 5 Node . All are working fine .
Now i am Planning to install Antivirus Symantec in to each node. Please let me know if there is any Best practice guide to install Symantec Antivirus for Hyper-v 2012 R2 Cluster node.
I am using full version of Windows 2012 R2 with hyper-v.
Thanks
Ravi
RaviI would also look strongly at no antivirus as well, but if you do, here are the recommended exclusions and possible issues with Anti-Virus to look out for.
Look for the Hyper-V section:
http://social.technet.microsoft.com/wiki/contents/articles/953.microsoft-anti-virus-exclusion-list.aspx
Big things to stay away from from a VM level too:
1. Do not have a set time when all VMs will kick off a scheduled full disk scan. This can create an I/O storm on your hosts as well as saturate the CPUs as well. Look for products or settings that allow for randomization of full disk scans on
the VMs or do not do full disk scans and only keep the real time scanners active on the VMs for incoming writes.
2. Watch for Antivirus products that update all the VMs at the same time. Again, sometimes you can randomize or exclude a scheduled full disk scan, but sometimes an automated update that kicks off say at 12am can then automatically kick off a
mini scan. This can also create disk I/O and CPU storms.
The problem that still exists with many Antivirus products today is that they try to scan as fast as they can and then get out of the way. This works ok for endpoint desktops or laptops, but when you have 50 or more VMs on a host all ramping up trying
to get done as quick as they can, then this can cause some issues.
Rob McShinsky (www.VirtuallyAware.com)
VirtuallyAware - Experiences in a Virtual World (Microsoft MVP - Virtual Machine) -
Hyper-V 2012 R2 Cluster Creation Fails
I am trying to create a 2 Node Hyper-v 2012 R2 Cluster. The Cluster Validation passes with no errors or warnings but the the cluster creation fails.
The error is similar to
here .
In this case he solved it by joining the Nodes to a Windows 2012 Domain. We don't have that option in our environment.
In the System Logs Events 7024 The cluster service terminated... The cluster join operation failed, and 7031 Cluster Services Terminated unexpectedly.
Anyone have an idea?
ToddHi Todd,
For troubleshooting , please try to create a new OU then move cluster nodes computer to that new OU then block inheritance , restart the nodes .
After this try to use domain admin account logon the cluster nodes to build cluster again .
Best Regards,
Elton Ji
Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact [email protected] . -
I am experiencing this error with one of our cluster environment. Can anyone help me in this issue.
The Cluster Service function call 'ClusterResourceControl' failed with error code '1008(An attempt was made to reference a token that does not exist.)' while verifying the file path. Verify that your failover cluster is configured properly.
Thanks,
Venu S.
Venugopal S ----------------------------------------------------------- Please click the Mark as Answer button if a post solves your problem!Hi Venu S,
Based on my research, you might encounter a known issue, please try the hotfix in this KB:
http://support.microsoft.com/kb/928385
Meanwhile since there is less information about this issue, before further investigation, please provide us the following information:
The version of Windows Server you are using
The result of SELECT @@VERSION
The scenario when you get this error
If anything is unclear, please let me know.
Regards,
Tom Li -
Apple sent me the wrong iPhone4, they won't send me the right one back!!
The fedex guy knocks on my door, I get my iphone4 today, I was all excited after waiting for 2 weeks, but when I open the case I found a 16gig iPhone4 instead of the 32gig I ordered. After waiting over one hour on the phone with support, they tell me that I am right, they sent the wrong phone.
What baffles me is their "solution" to the problem: they tell me that they have to place a return order on the phone and that once they get it back, I will be refunded and then I need to reorder AGAIN, from scratch! As if nothing happened, they send me to the back of the looong waiting line. They will not send the right iphone immediately, even though they made the mistake.
So pretty much I have to wait who knows how long to get the phone because they messed up. They won't express ship it, they won't give me one on the store in exchange (actually, I cannot even do the return on a store because I ordered online!!). All they did was to offer me one of those overpriced bumper cases of them as consolation.
Sorry, about the long rant, but I am really upset. This is not the way to treat anybody. I don't know if I want the phone now, but I guess they could care less after all the ones they are selling. Did I mention I am an apple fan?Locked
United States -
AT&T
MC608LL/A - 16GB Black
MC610LL/A - 32GB Black
Apple
MC318LL/A - 16GB Black
MC319LL/A - 32GB Black
Unlocked
Australia
MC603X/A - 16GB Black
MC605X/A - 32GB Black
Canada
MC603C/A - 16GB Black
MC605C/A - 32GB Black
France
MC603FB/A - 16GB Black
MC605FB/A - 32GB Black
Hong Kong
MC605ZP/A - 32GB Black
MC603ZP/A - 16GB Black
Italy
MC603IP/A - 16GB Black
MC605IP/A - 32GB Black
New Zealand
MC603X/A - 16GB Black
MC605X/A - 32GB Black
Singapore
MC603ZA/A - 16GB Black
MC605ZA/A - 32GB Black
United Kingdom
MC603B/A - 16GB Black
MC605B/A - 32GB Black
Maybe you are looking for
-
I have my ITunes account on my home Macbook. Can I log onto my ITunes account from a different Windows-based computer?
-
Why do I keep getting Error 2 Apple Application Support not found
I KEEP GETTING ERROR 2 PLEASE UNINSTALL AND REINSTALL IN WHICH I DID BUT GET THE SAME MESSAGE. I'M USING WINDOWS 7
-
Attaching MouseListeners to multiple graphics Objects ie rectangles
Can any one please help me by telling me how I can go about attaching mouselisteners to different rectangles in an application using one panel. I m not looking for code but any thing that my show me the way to this. Its very important that i do this.
-
Hi, In the Account assignment field settings for the following movement types , the GL account for offset posting are being overriden manually by entering those account codes to which,manual posting is permitted. 501/505: Receipt w/o purchase order
-
Please help to upload with java servlet
I want to install a java servlet uploader on my web site and i try to do it many times but i can't beacuse i dont know what are the essentials that should be found on the server to install java servlet in right way .. so please help me to do this ..