Windows Server 2012 DNS Issues
We have a new Hyper-V Host and 3 Guests, but in configuring one of these guests as a DNS Server (AD-Integrated) we see that there are issues in setting Forwarders - FQDN resolves but Validated timeouts almost every time. We are using ISPs DNS Servers and also tried Google's Public 8.8.8.8 and it also timesout.
Help please!
Help please!
Paul MacDonald
Is there only one network path? That is, is it possible there are two NICs configured for this VM?
Are you able to use nslookup to query your ISP nameservers and Google nameservers ?
ASKER
All VMs have one NIC each, which is connected to Virtual Switch. "Hyper-V NIC Team" has four physical adapters configured for use with this Virtual Switch. I have found that having Load Balancing for this team set to 'Hyper-V Port' resolves the instability/connectivity issues I was seeing, but now my Load Balance only allows for max 1GB throughput instead of using all 4 NICs. The other mode which I assumed would work fine is 'Address Hash', but for some reason when I set the team to this mode I get funny/various lookup issues - I can ping 8.8.8.8 just fine.
ping is one thing, nslookup is another...
what type of team have you created ? a Microsoft 2012 team, or one provided by the NIC vendor, such as the HP NCU ?
what type of team have you created ? a Microsoft 2012 team, or one provided by the NIC vendor, such as the HP NCU ?
ASKER
Server 2012 Team.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
So my issue is then that all my Guests are not Server 2012 due to incompatibilities (i.e. Exchange 2010), so how would I use NIC Teaming in Server 2008 R2?
This seems like a real mess to something that seems such a simple requirement.
Have you been successful with Server 2012 NIC Teaming in Host before?
This seems like a real mess to something that seems such a simple requirement.
Have you been successful with Server 2012 NIC Teaming in Host before?
ASKER
Let me take a step back and explain my configuration, and see if I am missing anything .....
Hyper-V Host is Server 2012 and I have enabled NIC Teaming and created a 'Management Team' for this machine with 2 NICs which are set to Address Hash - dont seem to be any issues with this.
I then create a 2nd NIC Team 'Hyper Team' and if I use Address Hash as the LB Mode I see weird nslookup results. I also create a Virtual Switch 'External vSwitch' so that my VM can connect its virtual NIC. Virtual NIC is assigned Static IP and setup as DC, DNS Roles.
I first start to see this weird nslookup DNS resolving when I go to set the DNS FOrwarders (I have tried ISP and Public Google) where some will Validate and resolve FQDN and some will not.
If I then change the LB Mode from Address Hash to Hyper-V Port, I get zero issues.
Thoughts?
Hyper-V Host is Server 2012 and I have enabled NIC Teaming and created a 'Management Team' for this machine with 2 NICs which are set to Address Hash - dont seem to be any issues with this.
I then create a 2nd NIC Team 'Hyper Team' and if I use Address Hash as the LB Mode I see weird nslookup results. I also create a Virtual Switch 'External vSwitch' so that my VM can connect its virtual NIC. Virtual NIC is assigned Static IP and setup as DC, DNS Roles.
I first start to see this weird nslookup DNS resolving when I go to set the DNS FOrwarders (I have tried ISP and Public Google) where some will Validate and resolve FQDN and some will not.
If I then change the LB Mode from Address Hash to Hyper-V Port, I get zero issues.
Thoughts?
ASKER
Interesting that I came across http://www.aidanfinn.com/?p=14049 which talks about the setup I am going with that traffic will bypass NIC Team in Host if setup like this, so recommendation is to have multiple vNICs as you mentioned and multiple vSwitch (one per VM).
a much better description :-)
i's suggest that you were experience the problem on all traffic, but noticing it DNS being UDP rather than TCP
TCP works around ropped packets, UDP doesn't...
I probably wouldn't use Windows Teaming in a production environment, but 99% of the time I use HP servers with HP NICS, so it isn't an issue for me.
hyper-v port will only provide one physical NICs worth of bandwidth per guest, as it this is why I suggested doing the load balancing in the guest rather than the host, however if you're not running 2012 for the guests, thats a non starter...
As to why address hash was causing the problem; I would look at the switch that the physical NICs are connected to, at a guess, it's MAC table was getting "confused", the difference between the management team and the guest team, is that the management team only has one MAC address on it, as opposed to the guest team which presumable has "more".
What swiitch are you using ? Does it have support for LACP ? What server and NICs are you using ?
i's suggest that you were experience the problem on all traffic, but noticing it DNS being UDP rather than TCP
TCP works around ropped packets, UDP doesn't...
I probably wouldn't use Windows Teaming in a production environment, but 99% of the time I use HP servers with HP NICS, so it isn't an issue for me.
hyper-v port will only provide one physical NICs worth of bandwidth per guest, as it this is why I suggested doing the load balancing in the guest rather than the host, however if you're not running 2012 for the guests, thats a non starter...
As to why address hash was causing the problem; I would look at the switch that the physical NICs are connected to, at a guess, it's MAC table was getting "confused", the difference between the management team and the guest team, is that the management team only has one MAC address on it, as opposed to the guest team which presumable has "more".
What swiitch are you using ? Does it have support for LACP ? What server and NICs are you using ?
Do you have SR-IOV NICs ? and an SR-IOV motherboard ?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SR-IOV is a new hardware/driver combination that allows a physical device (such as a NIC, or HBA) to be presented as that device to the Guest, it requires a SR-IOV capable motherboard, device, and hypervisor, but is quite simple to use.
What switch (physical) are you using ?
What switch (physical) are you using ?
ASKER
Netgear GS748T in Test Lab
Netgear GS748TPS in Production
Netgear GS748TPS in Production
The GS748T series does support 802.3ad, it is configures as trunking on page 24 (marked 4-10)
http://www.downloads.netgear.com/files/FSxxxT_GSxxxT_smartswitch_UserManual.pdf
What teaming mode are you using ?
http://blogs.technet.com/b/keithmayer/archive/2012/10/16/nic-teaming-in-windows-server-2012-do-i-need-to-configure-my-switch.aspx
http://www.downloads.netgear.com/files/FSxxxT_GSxxxT_smartswitch_UserManual.pdf
What teaming mode are you using ?
http://blogs.technet.com/b/keithmayer/archive/2012/10/16/nic-teaming-in-windows-server-2012-do-i-need-to-configure-my-switch.aspx
ASKER
Am currently in "Switch Independent".
So are you saying that if I switch the mode to Static Teaming or LACP and Enable Trunking on switch this would resolve the connectivity issues and allow me to Team my NICs to have > 1GB link?
So are you saying that if I switch the mode to Static Teaming or LACP and Enable Trunking on switch this would resolve the connectivity issues and allow me to Team my NICs to have > 1GB link?
might resolve them.
but I'd certainly give it a go
but I'd certainly give it a go
ASKER
I did not get a chance to try your suggestion above to switch modes as we went into production. May reference this on next project.