Hi all, I seem to have run into a case where my DC's aren't being round-robin'ed by DNS. I've got 3 DC's using Internal DNS, but every time I ping mydomain.com and check the results (ipconfig /displaydns), it's always in the same order. The same order appears when I query the DC's directly, individually: # nslookup mydomain.com 172.23.51.5 Server: 172.23.51.5 Address: 172.23.51.5#53 Name: mydomain.com Address: 172.23.51.5 Name: mydomain.com Address: 172.23.51.3 Name: mydomain.com Address: 172.19.27.10 Name: mydomain.com Address: 172.23.51.6 Does anybody know how this can occur? I am running two sites (172.19.27.10 is on a different site, the others are local), if that matters. Thanks, -Kris Kris Lou klou at themusiclink.net
On Wed, 19 Sep 2018 13:36:42 -0700 Kris Lou via samba <samba at lists.samba.org> wrote:> Hi all, > > I seem to have run into a case where my DC's aren't being > round-robin'ed by DNS. I've got 3 DC's using Internal DNS, but every > time I ping mydomain.com and check the results > (ipconfig /displaydns), it's always in the same order. > > The same order appears when I query the DC's directly, individually: > > # nslookup mydomain.com 172.23.51.5 > > Server: 172.23.51.5 > Address: 172.23.51.5#53 > > Name: mydomain.com > Address: 172.23.51.5 > Name: mydomain.com > Address: 172.23.51.3 > Name: mydomain.com > Address: 172.19.27.10 > Name: mydomain.com > Address: 172.23.51.6 > > > Does anybody know how this can occur? I am running two sites > (172.19.27.10 is on a different site, the others are local), if that > matters. >I run Bind9 on 2 DC's and it works for me, but one thing I did note. You say you have 3 DC's, but there appears to be 4 ipaddresses associated with the domain, what is the fourth ? Rowland
Sorry, there are three DC's on my "local" site, and one site connected via an IPSEC tunnel. So yes, there are 4 DC's, but most of my services here depend on the 3 in the local site. In either case, they're still all being resolved in the listed order -- which incidentally seems to be the order that they're listed via DNS Manager. An errant "ntacl sysvol reset" caused the first DC to choke up this morning -- and failover (or round robin) didn't happen. So here we are ... -Kris Kris Lou klou at themusiclink.net On Wed, Sep 19, 2018 at 2:05 PM, Rowland Penny via samba < samba at lists.samba.org> wrote:> On Wed, 19 Sep 2018 13:36:42 -0700 > Kris Lou via samba <samba at lists.samba.org> wrote: > > > Hi all, > > > > I seem to have run into a case where my DC's aren't being > > round-robin'ed by DNS. I've got 3 DC's using Internal DNS, but every > > time I ping mydomain.com and check the results > > (ipconfig /displaydns), it's always in the same order. > > > > The same order appears when I query the DC's directly, individually: > > > > # nslookup mydomain.com 172.23.51.5 > > > > Server: 172.23.51.5 > > Address: 172.23.51.5#53 > > > > Name: mydomain.com > > Address: 172.23.51.5 > > Name: mydomain.com > > Address: 172.23.51.3 > > Name: mydomain.com > > Address: 172.19.27.10 > > Name: mydomain.com > > Address: 172.23.51.6 > > > > > > Does anybody know how this can occur? I am running two sites > > (172.19.27.10 is on a different site, the others are local), if that > > matters. > > > > I run Bind9 on 2 DC's and it works for me, but one thing I did note. > You say you have 3 DC's, but there appears to be 4 ipaddresses > associated with the domain, what is the fourth ? > > Rowland > > > > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba >
The internal DNS is NOT supporting round robin. As Rowland said use Bind9 Am 19.09.18 um 22:36 schrieb Kris Lou via samba:> Hi all, > > I seem to have run into a case where my DC's aren't being round-robin'ed by > DNS. I've got 3 DC's using Internal DNS, but every time I ping mydomain.com > and check the results (ipconfig /displaydns), it's always in the same order. > > The same order appears when I query the DC's directly, individually: > > # nslookup mydomain.com 172.23.51.5 > > Server: 172.23.51.5 > Address: 172.23.51.5#53 > > Name: mydomain.com > Address: 172.23.51.5 > Name: mydomain.com > Address: 172.23.51.3 > Name: mydomain.com > Address: 172.19.27.10 > Name: mydomain.com > Address: 172.23.51.6 > > > Does anybody know how this can occur? I am running two sites (172.19.27.10 > is on a different site, the others are local), if that matters. > > Thanks, > -Kris > > > Kris Lou > klou at themusiclink.net-- Stefan Kania Landweg 13 25693 St. Michaelisdonn Signieren jeder E-Mail hilft Spam zu reduzieren. Signieren Sie ihre E-Mail. Weiter Informationen unter http://www.gnupg.org Mein Schlüssel liegt auf hkp://subkeys.pgp.net -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 195 bytes Desc: OpenPGP digital signature URL: <http://lists.samba.org/pipermail/samba/attachments/20180923/24921fe4/signature.sig>
> > The internal DNS is NOT supporting round robin. As Rowland said use Bind9 >That's news to me! If so, then the internal DNS backed is not suitable for multiple DC's. (Though, I could've sworn it worked on versions 4.2+ < 4.7. It's on my to-do list to explore this further with different versions.)