Solved

Help needed with Exchange 2010 namespace

Posted on 2011-02-19
8
1,575 Views
Last Modified: 2012-05-11
In the "Namespace Planning" section of this Technet article (http://technet.microsoft.com/en-us/library/dd638104.aspx), Microsoft summarise "The key requirement is that, regardless of the naming convention you use, each datacenter should have its own unique namespace.".

I am confused as to how this should be achieved ?

Is each site a subdomain of a root forest ?  In which case, how does DAG work, because I thought DAG had to be in the same domain, not just the same forest ? (I believe this is a Windows Failover Cluster restriction that it cannot cross domains, hence it's also a DAG restriction)
0
Comment
Question by:TwentyFourSeven
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 2
  • 2
8 Comments
 
LVL 33

Expert Comment

by:Busbar
ID: 34936152
because internally you cannot have the same namespace in 2 data center, or you will have to update DNS which is manual step.
0
 
LVL 1

Author Comment

by:TwentyFourSeven
ID: 34936788
Still confused.
0
 
LVL 33

Expert Comment

by:Busbar
ID: 34936812
how come you will handle mail.domain.com in the 2 data centers internally ?!
0
Best Practices: Disaster Recovery Testing

Besides backup, any IT division should have a disaster recovery plan. You will find a few tips below relating to the development of such a plan and to what issues one should pay special attention in the course of backup planning.

 
LVL 1

Author Comment

by:TwentyFourSeven
ID: 34937526
All I want to do is achieve the recommended configuration in the Technet article I linked to in my first post. But the Technet article is not clear how this should be done.
0
 
LVL 58

Accepted Solution

by:
tigermatt earned 500 total points
ID: 34938127

I hear your confusion. I can see how the mention of "namespaces" in the article could be confusing. It isn't talking about Active Directory Domains and Forests because as you said, all members of the DAG must be in the same domain. What's it's talking about is the external DNS records you use to expose the client access services in each datacenter to the Internet.

You have to plan for both datacenters to be actively providing client access services at any one time -- this could happen if you had a partial failover, such as some software issue affecting some, but not all, databases in your main datacenter.

The easiest way to discuss this might be by way of example. Let's say we have two datacenters, our primary one in London and a redundant one in Paris. The DAG is stretched across both facilities.

The London datacenter is the primary endpoint for OWA, Autodiscover, Outlook Anywhere, ECP and Exchange ActiveSync. You would create records in your external DNS namespace for owa.domain.com and autodiscover.domain.com, and point those at the Virtual IP (VIP) of the load balancer sat in front of your CAS array in London. It could be a Windows NLB array, dedicated hardware load balancer or Forefront TMG load balancing array.

If you don't expose the Paris site to the Internet, your London site has the ability to proxy OA/OWA/ECP etc to the CAS servers in the Paris site. If there were a partial failover but Client Access was still functioning in London, it would happily proxy requests to the non-Internet-facing Paris client access servers. However this is slow and cumbersome, as it relies on potentially slow WAN links between the two sites.

If the users whose mailboxes are active in Paris can log in to the Paris CAS array directly (by exposing it to the Internet), then proxying is not necessary. To expose Paris to the Internet means you need a second namespace - a second set of DNS records - dedicated to the services in that site. So you could use owa.paris.domain.com as the article suggests, or owaFR.domain.com, or anything you choose, as long as it's different to what's used in the London site. Those URLs are configured on the ExternalURL property of Paris CAS virtual directories so that London can redirect requests to the appropriate URL if a user's mailbox is activated on a database in Paris.

So if you are in a partial failover scenario of some but not all databases, both sites are exposed to the Internet. All users still access resources through owa.domain.com but London will automatically redirect requests to owa.paris.domain.com if it was necessary.

This doesn't make a difference in a full failover scenario. In a full failover where you lose Client Access services in the London site (loss of power or all routes to the Internet), you must update the main owa and autodiscover.domain.com records to point to the Paris CAS array external IP address so that users can still log on. This should be documented as part of your failover procedure.

In short: the additional records are simply there so that the Paris site is exposed to the Internet and can have requests redirected in the event of a partial failover.

-Matt
0
 
LVL 1

Author Comment

by:TwentyFourSeven
ID: 34938181
Awarding points to tigermatt:......
0
 
LVL 1

Author Closing Comment

by:TwentyFourSeven
ID: 34938185
Now that's what I call an answer to a question !  Other "experts" on EE should take note !

Well deserved 500 points tigermatt !

Thank you !
0
 
LVL 58

Expert Comment

by:tigermatt
ID: 34942951
Glad to be of assistance. :)
0

Featured Post

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Antivirus on Exchange 3 37
EXCHANGE 8 24
Exchange 2013 to another 2013 forest move request 2 13
Exchange 2016 Size restrictions. 13 31
This article explains in simple steps how to renew expiring Exchange Server Internal Transport Certificate.
Find out what you should include to make the best professional email signature for your organization.
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…

740 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question