I was asked to look into the question of how to proactively discover users and processes which are using old server names to access data on a new server.
The question that needs to be answered is about which Client is getting to the active server, call it NewServer, using a URI which refers to an inactive server, call it OldServer. (Therefore, it seems to me that this question is not about DFS, since DFS only takes you out of a server to another network location for accessing data.)
We modified the DNS entry for OldServer and gave it the same IP address as NewServer. Then, we ensured that the Root folders on OldServer were also present (without subfolder conflicts) on NewServer. Problem solved.
In this case, in order to detect legacy URI's in use, we would need one of the following to be true:
1) It is possible (and feasible) to configure the DNS server to log requesting IP address along with the Server they are requesting resolution for. Said another way, there is a way to answer the question, "Which IP addresses are requesting name resolution for OldServer.
2) When the request is sent from the Client to NewServer's IP address, there is something in the request that still references the original server name, OldServer, and we can log that something.
Are either of those things possible? Is there another way to detect this?