Teamed network cards for domain controllers?

can someone help me to resolve a debate we have: my colleage states that domain controllers (in our case Win2003SP2) should "not" have their network cards teamed for high availability (via HP's NIC teaming software).? I've not heard of this and cannot Bing/Google anything like this. I'm under the impression that a domain controller "should" have it's gigabit NICs teamed to make sure that directory services are highly available.
any information on this would be great. thanks...Peter A. Berger Jr.

Fault Tolerance and Network Teaming
                Anyone who has called Microsoft for help with a networking problem has likely heard the question: "Are you using network teaming?" I have often heard this referred to by Microsoft's customers as a "quick out" or an excuse that Microsoft was looking to pass the responsibility on to someone else. As someone that has been on both ends of the phone, and at the highest escalation point within Microsoft's Network queues I can tell you that it is a question born of wisdom and tempered with experience. While working the phones at Microsoft, supporting the largest and most critical systems in the US it was rare to ever get a call about the same problem more than once. Even more rare was for everyone on our group to get the same calls, and have the same experiences. I recall it happening when we fought the blaster worm, and when Microsoft's "Scalable Networking Pack" was released with 2003 SP2. These were bad, but a few months went by and except for a few straggles the phone calls stopped, the world got wise to the issue and the problem was resolved. I was amazed though to experience 1-3 calls a week with network issues CAUSED by network teaming. I could not help but be blown away by the irony of a program meant to avoid network failure so often causing it. I talked to colleagues, (of which I have found no better single source in the industry than at Microsoft), and found that even the old timers having more than 15 years with the company had the same stories of problems caused by networking teaming as we are constantly experiencing today. I am amazed that an industry as wise and agile as the computer industry has been (and is), has stuck with such a poor technology. I always asked my customers as the called with problems, usually critical ones, "What is teaming these network cards getting you". Almost unanimously the answer would come fault tolerance, to which I would reply rhetorically "How often do you NICs or Switches fail and how often has teaming caused network failure?" In my opinion, it is unforgivable for an application to constantly cause the problem that it is written to avoid. It should cause pause and reflection as to whether the technology is well suited for its function, whether it is just written poorly or if all of its implementations have similar problems. Technology today is beyond network teaming. There are far better methods of providing fault tolerance with manual and automatic failover. Most application writers have taken into consideration fault tolerance at the service level superseding anything that network teaming offers, so that network teaming should be a dead technology, because it is killing us.
                Finally, if you are considering using network teaming, or have had reason to reconsider its use, maybe these questions will help your assessment:
                What is my goal with using network teaming?
                Can I gain Availability through use of a more capable NIC card?
                How often have my NIC cards failed?
                When NIC cards have failed were they the only failure, or was it in conjunction with a Motherboard or other failure causing the service to be unavailable?
                What are my needs for uptime for these services?
                Would a manual failover (the simplest of options) be viable for this service?
                What options for automatic failover do I have (since most applications can have multiple providers through configuration)?
                One other note to add. While working on the phones at Microsoft, and later as a consultant to large and federal organizations, I found one thing that seemed to be true most of the time. When a problem occurred, it was rarely the OS itself, but something unnatural to its processes. Simplicity and minimalism is really one of the keys to a healthy server and environment. Often it is necessary to introduce other applications and services, but I do not think near as often as we do.
Note: MSFT does not support network teaming, because they do not own the software that provides it. In certain instances though, like with OCS, they flat out will not support OCS if teaming is enabled on the server.
Note2: I realize my comments above are very general, and so I want to apply these to this exact question. When I consider AD and how to make it fault tolerant, I cannot help but realize that the protocols, clients and services that make up Directory Services, are beautifully fault tolerant. In most cases, the loss of any one DC would not greatly affect the user's ability to authenticate to a computer or service within the domain. Even more, Directory services is inherently so fault tolerant that it can still function with the loss of a major part of the servers that make it up.
Don't forget to give credit where credit is due, vote this as helpful if it helped you.

Similar Messages

  • Hard code spwr network card for 100-full

    How can I hard code a spwr network card for 100-full duplex?
    thanks,
    Clark

    The following lines added to /etc/system sets a hme network card to 100 full duplex,
    set hme:hme_adv_autoneg_cap=0
    set hme:hme_adv_100T4_cap=0
    set hme:hme_adv_100fdx_cap=1
    set hme:hme_adv_100hdx_cap=0
    set hme:hme_adv_10fdx_cap=0
    set hme:hme_adv_10hdx_cap=0

  • Network card for G$

    Can someone recommend a network card for a G4 ?
    My built-in card died recently. I installed a DFE-530TX but couldn't get it to work with 10.3.9.
    I am looking at some of the G-wireless options but not sure which one to select.
    Any recommendation will be greatly appreciated.
    G4   Mac OS X (10.3.9)  
    power g4   Mac OS X (10.3.9)  
    G4   Mac OS X (10.3.9)  

    Hi alexago,
    Welcome to the Discussions.
    metaphyz had a page of Mac OS wireless compatibility list but it seems to be down. Google has it cacked though. Click on the words in blue above to see the cached page.
    John

  • Network Card for PowerBook G3

    Hello everyone,
    I have an older laptop and I have been told that I can only access the Internet with dialup because the computer does not have a network card.
    Is there one available for the PowerBook G3. Better yet, can I get a wireless card?
    Thank you very much
    N
    Macintosh PowerBook G3   Mac OS 8.6 or Earlier   Mac OS 8.5.1

    Welcome to Apple Discussions!
    The Powerbook G3 has a built-in ethernet port. It is the same as a "network card" 10-base-T. It is slightly wider than the telephone cable though looks like a phone jack.
    What age Powerbook G3 do you have? Some have a built-in port to insert an older style airport card (not the Airport Extreme), while others require using a PCMCIA WiFi card such as the Lucent Orinico Gold. See this article to identify your Powerbook G3:
    http://docs.info.apple.com/article.html?artnum=24604

  • Replacement network cards for MacPro

    My question is for anyone who is familiar with the MacPro motherboard. Lightning blew out my dual ethernet card and the estimate to replace it is around $450. A friend told me I could purchase a compatible network card and plug it directly into one of the three available slots on the mother board. If this is true, could anyone suggest to me a network card that is compatible with the MacPro motherboard? I would appreciate any help with this issue!

    Are you considering any particular cards ?
    I have had good luck with DEC21040 (10baseT) and DEC21140 (100baseT) cards
    in Solaris 7 through Solaris 10 on x86.
    The same can be said for 3Com 3C905C-TX cards.
    Solaris 8x86 will recognize many chipsets natively,
    and a number of third party developers have created working driver packages.
    Most of their driver packages are free, but a few are not free.
    Solaris 9 works with a few more, and Solaris 10 works with yet more adapters.
    The Solaris 8x86 HCL list has the native cards.
    This other Sun web page can direct you toward 3rd party sites.

  • Network cards for Solaris 8 x86

    Which network cards are supported by Solaris 8 x86 ?
    Thank you !
    dorin.

    Are you considering any particular cards ?
    I have had good luck with DEC21040 (10baseT) and DEC21140 (100baseT) cards
    in Solaris 7 through Solaris 10 on x86.
    The same can be said for 3Com 3C905C-TX cards.
    Solaris 8x86 will recognize many chipsets natively,
    and a number of third party developers have created working driver packages.
    Most of their driver packages are free, but a few are not free.
    Solaris 9 works with a few more, and Solaris 10 works with yet more adapters.
    The Solaris 8x86 HCL list has the native cards.
    This other Sun web page can direct you toward 3rd party sites.

  • How to change the TCP session limit for Domain Controllers in TMG2010

    I've many errors in TMG2010, that relates with too many TCP sessions, that are generated from my two domain controllers.
    how can i change since settings?
    Regards!
    Lasandro Lopez

    Hi,
    create flood mitigation exceptions for the domain controllers:
    http://technet.microsoft.com/en-us/library/dd441028.aspx
    regards Marc Grote aka Jens Baier - www.it-training-grote.de - www.forefront-tmg.de - www.galileocomputing.de/3276?GPP=MarcGrote

  • Allow log on through Remote Desktop Services Group Policy for Domain Controllers

    Hello,
    We want to allow our Helpdesk Operators to be able to connect to Domain Controllers with the Remote Desktop Services. This is by default not allowed but according to many sites, it should be able to configure by using a Group Policy.
    We made a new Group Policy with the setting 'Allow log on through Remote Desktop Services' and 'Allow log on locally' (as an extra for testing) and applied Security Filtering to only use it for a specific Security Group. Our test user is a member of this
    security group and should be able to access the Domain Controllers now. However this isn't working.
    The error message we receive upon trying to connect:
    The connection was denied because the user account is not authorized for remote login.
    For troubleshooting, we also applied the Security Group for that setting in the Default Domain Controllers Policy but that doesn't seem to work either. We want to avoid customization on our Default Domain Controllers Policy but this was just a test case
    for solving our problem.
    What should we do to solve our problem?
    I hope to hear from you soon.
    Thanks in advance.

    Hi, I just found out what the problem was. This site helped me alot:
    http://blogs.technet.com/b/askperf/archive/2011/09/09/allow-logon-through-terminal-services-group-policy-and-remote-desktop-users-group.aspx
    In my case, I had the group added to the Allow Logon Through Remote Desktop Services but was not added to the Builtin\Remote Desktop Users group. After knowing this I made some changes to our situation and are now using the builtin\Remote Desktop Users group
    rather than a new self made Security Group. I also added the Remote Desktop Users to the Allow Logon Through Remote Desktop Service in the Default Domain Controllers Policy as this is not done by default. By default only the Domain Administrators are able
    to logon through remote desktop services.
    You do not need the 'Log on Locally' permission within the Group Policies.
    In short:
    Add the desired users/groups to the 'Builtin\Remote Desktop Users' security group.
    Add the 'Builtin\Remote Desktop Users' security group to the 'Allow Logon Through Remote Desktop Services' within the 'Default Domain Controllers Policy'.
    Thank you anyway for the fast reply.
    Have a nice day!

  • XPS 8700 - need additional network card for VMware Workstation

    Hello -
    I'm wanting to add either a dual or quad network card to my XPS 8700 so I can provide physical interfaces for some VMware Workstaion.  Is there a specific band or model that is compatible..?
    I've tried installing a spare Intel E1G42ET (dual port) card I had laying around, but the OS never saw it even with the drivers from Intel's website loaded up.
    Any suggestions..?  Thanks,

    No - but it's just another card to the BIOS. Also, there's already a Wireless NIC and an Ethernet NIC in there.  I appreciate the suggestion - I can test it,. but suspect the issue will remain the same.
    Thanks,

  • Setting a loopback policy setting for Domain Controllers/Preventing IE from accessing externally

    Hello, we need to set a lookback policy for our domain controllers to ensure IE doesn't access externally. Is the loopback the best method, or do you all have recommendations?

    As far as I'm aware, there's not a good Group Policy setting to do this. 
    If I understand your question correctly, you wish to prevent external Internet browsing from your Domain Controllers, but everyone else (other servers and workstations) should have full access.
    If that's the case, I would recommend blocking port 80 for the Domain Controllers in your Firewall, as they (I hope) have static local IP addresses.
    If you know of a good Group Policy setting however, it would be best to set it in the Default Domain Controller Policy, as that will only affect the Domain Controllers.
    The "loopback" policy you're referring to is the "Configure user Group Policy loopback processing mode", which can be used to apply the computer configuration "instead of" or "merged with" the user configuration when
    a user logs on to computers where this policy applies. Since the computer configuration is normally applied before the user configuration, that can be used to force rules on computers regardless of who's logging in.
    Please mark as answer or vote
    as helpful when
    it applies. Thanks!

  • Network Card for HP Laser Jet 2420

    What type of network card do I need do I buy to put this printer on a network?

    Hi,
    Sorry, looks like no other choice since they (all models of the series) shown on the following links:
      http://h10010.www1.hp.com/wwpc/au/en/sm/WF10a/1897​2-18972-3328059-3328066-3328066-416419.html
      http://h10010.www1.hp.com/wwpc/us/en/sm/WF13a/1897​2-236251-236263-14638-f51-416419.html
    Regards.
    BH
    **Click the KUDOS thumb up on the left to say 'Thanks'**
    Make it easier for other people to find solutions by marking a Reply 'Accept as Solution' if it solves your problem.

  • Where can I find an apple airport extreme wi-fi network card for my Mac pro 2x 2.26ghz nehalem?

    I can't seem to locate the correct network card anywhere, so I assume I'm attempting to find it without all the information. Assistance as to which card is the right one and where I can find it would be appreciated.

    You mean the card shown here and here?

  • Utlizing 4 network cards for SUN v245

    Hi
    I would like to check if using the 4 network cards binded to the same ip address would be able to utlilize 1000Mbps?
    Or would just configuring 1 card be sufficient?
    How is it done??
    thanks

    Did a traditional, JETless jump overnight, and had the same effect. So it's not JET.

  • Best Practice for Domain Controllers for a company of 500 users.

    Our company is expanding and is planning on having roughly 500 users managed by a domain controller. The question is, what sort of hardware do you actually need that will not be a bottleneck in the near future (3-5 years from now). We stick with Dell servers, and have been looking at the R430 option. Is this necessary? Is higher clock CPU better than having more cores but less core clock speed? How about Memory, Hard Drive RPM / SSD or other hardware? We'll be using Windows Server 2012 R2 Standard. Thanks!
    This topic first appeared in the Spiceworks Community

    Staffing teams’ sourcing acumen is key in the success of strategies involving channels such as referrals, job portals, social media, tech forums and salary/job comparison sites, says Mindtree’s VP- Talent Acquisition Kanchana Dwarakanath, TimesJobs.com Indian IT services companies have posted steady growth in 2014-15 and hiring has continued at a steady pace. Amid this, recruitment practices too are undergoing a sea change. So how are IT companies today putting in place new-age talent hiring options? TimesJobs.com spoke to Pankaj Khanna, vice-president, Talent Acquisition, Mindtree, on this. Excerpts from the interview: Q: Companies today are adopting new-age talent hiring options. How do you see it impacting hiring in the future? A: Talent available on job boards typically fulfill about 50-60 per cent of the demand for lateral hires...

  • PCMCIA Network card for public network

    Hi All
    I am going to setup Oracle RAC on my laptops and would like to use PCMCIA netwrok card as public network, but I am wondering if it there would be any issue at all.
    Could anybody advise please.
    Thanks
    Soheil

    Soheil,
    Just by adding more memory to your machine you can install RAC on your machine.You dont need two laptops.
    http://www.oracle-base.com/articles/10g/OracleDB10gR2RACInstallationOnCentos4UsingVMware.php
    Hope it helps

Maybe you are looking for