Solved

Exchange 2010: CAS Array using Round Robin DNS, no NLB

Posted on 2011-02-14
4
3,419 Views
Last Modified: 2012-05-11
We're currently running Exchange 2003 SP2 and Outlook 2003 in our environment and looking to migrate to Exchange 2010/Outlook 2010.  We're looking to go with a 2 node CAS array for one of our offices.  For the CAS array, someone suggested using round robin DNS only, (no NLB), and in the event that one of the CAS nodes in the array went down, Outlook 2010 clients would be sophisticated enough to automatically reconnect to the other CAS server.  Can someone verify that in a round robin DNS configuration, that Outlook 2010 wouldn't try to connect to a CAS server that is down?  My thinking is that it's hit or miss.  I always thought one of the shortcomings of round robin DNS is the possibility of connecting to a host that is down.  
0
Comment
Question by:bsohn417
4 Comments
 
LVL 58

Accepted Solution

by:
tigermatt earned 500 total points
ID: 34889470

>> in the event that one of the CAS nodes in the array went down, Outlook 2010 clients would be sophisticated enough to automatically reconnect to the other CAS server

As you suspected, that's not correct. DNS could just as easily return the record for a downed CAS server as that of an active one, and there's no automated detection mechanism to prevent this. Should a CAS go down, you'd have a window of restricted service until someone manually removed the DNS entry for the downed server and the record had expired from caches on downlevel DNS servers/client workstations.

At the bare minimum, use an NLB array with its own virtual name and IP address. An NLB array is fault tolerant to a point - it will skip servers in the list which are offline. However, beware that it is not application aware -- if the host CAS is up but Exchange Services are not, traffic might still be routed to that CAS server. Whether you accept this possibility is something you need to work out dependent on your implementation strategy. If you need more robust uptime, you'd need to look at an Exchange-aware load balancer, such as one of F5 or Barracuda's products.

-Matt
0
 
LVL 2

Expert Comment

by:gtfiji
ID: 34904180
Matt is right, although it should be noted that DNS round robin is a supported solution.  MAPI clients (e.g. Outlook), ActiveSync clients (e.g. iPhones), and OWA clients (browsers) are all configured to attempt to contact all CAS servers to which they are referred by DNS.  If a CAS server dies and its A record persists in the DNS zone, clients who are directed to that CAS server first will simply experience a delay before they connect to one of the other servers.

There's also the matter of what happens to the users who are connected to a CAS server when it dies.  If you are using a Hardware Load Balancer or Network Load Balancing, OWA clients will seamlessly start being serviced by a different server in the event of an outage (as long as forms-based authentication is in use).  The browser would have to be closed and re-opened if DNS round robin is used.  MAPI clients will have to be closed and re-opened to connect to another server regardless of which load balancing solution you use.
0
 
LVL 74

Expert Comment

by:Glen Knight
ID: 35145650
This question has been classified as abandoned and is being closed as part of the Cleanup Program. See my comment at the end of the question for more details.
0

Featured Post

Does Powershell have you tied up in knots?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you don't know how to downgrade, my instructions below should be helpful.
This article aims to explain the working of CircularLogArchiver. This tool was designed to solve the buildup of log file in cases where systems do not support circular logging or where circular logging is not enabled
In this video we show how to create an email address policy in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Mail Flow…
To show how to generate a certificate request in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Servers >> Certificates…

910 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

20 Experts available now in Live!

Get 1:1 Help Now