Solved

Removing a 2008 R2 terminal server from a terminal server farm where DNS round robin is used

Posted on 2014-01-02
11
652 Views
Last Modified: 2014-01-22
I have six 2008 R2 terminal servers and one 2008 R2 broker server and I am using DNS round robin to manage client connection requests. When I have take a server out of the farm for maintenance I start with draining the users then I remove the server from the session brokers local session broker computers group, however I receive many complaints that the session broker still attempts to connect users to the server that I took out of production. So in addition to the above steps I have also been removing the DNS records for that server on the domain controller then re-creating them when I want to bring it back online. I have the keep alive on the DNS records reduced to 2 minutes from the default of an hour. I do not understand why the session broker is still passing connection requests to the offline server.
0
Comment
Question by:sysengineer
  • 5
  • 5
11 Comments
 
LVL 19

Expert Comment

by:Patricksr1972
ID: 39752096
Hi

Probably because it is not done draining, in other words, there are still session which are not terminated.
I suggest to start draining in the morning and e-mail every TS user to logoff their sessions somewhere during the day.
0
 

Author Comment

by:sysengineer
ID: 39752119
I should have explained that in more detail. after I drain the users I open task mgr and send message to all users with an active session notifying them that the server will be rebooted in 15 minutes and to log off and they will be re-directed to another server. After 15 minutes I log off any active sessions from task mgr.
0
 
LVL 19

Expert Comment

by:Patricksr1972
ID: 39752143
Thanks for the explanation, this sounds like a neat way.

So for my understanding the TS is in drain mode as you killed your last sessions but still new connection attempts are made and granted?
0
 

Author Comment

by:sysengineer
ID: 39752211
New connection attempts are being made but not granted. When the server is still online and in drain mode the users get a " logons are currently disabled". When I have the server offline they get a failed connection attempt. I have suspected this is DNS related so I reduced the time to live on the host A record. Currently I am not using the Connection broker load balancing load balancing, only DNS round Robin because it keeps requiring clients to authenticate twice to establish a connection. I would prefer this method to balance my user connections rather than DNS round Robin however round robin seems to be more prevalent. Not sure why.
0
 
LVL 19

Expert Comment

by:Patricksr1972
ID: 39752244
Ok i think i have it clear, by DNS round Robin you mean you have 6 entries in DNS with equal names pointing to 6 different servers?

In that case you should remove 1 A record and force a DNSFLUSH on your clients or wait 15 minutes to have the DNS replicated to all clients.
If after 15 minutes people still get the error they cannot connect there is something wrong/different as default with the DNS distribution schema.

Can we assume all clients run windows 7 pro?
0
Do email signature updates give you a headache?

Do you feel like you are constantly making changes to email signatures? Are the images not formatting how you want them to? Want high-quality HTML signatures on all devices, including on mobiles and Macs? Then, let Exclaimer solve all your email signature problems today.

 
LVL 35

Expert Comment

by:Mahesh
ID: 39752261
Some downsides of Round Robin:
There's typically no heartbeats or failure detection with DNS records, so if a given server in the rotation goes down, its A record must manually be removed from the DNS entries
The time to live (TTL) must necessarily be set quite low for this to work at all, since DNS entries are cached aggressively throughout the internet
The client computers are responsible for seeing that there are multiple A records and picking the correct one

You may give a try to change record TTL value to 30 seconds \ 1 Min.
What I suspect, you need to force DNS update once you deleted host (A) record as its not getting clear immediately from all domain controllers and clients will be able to locate that causing issues.

You could DNS refresh in no of ways:
Just increase SOA record value in properties of SOA record on dns server where you delete Host(A) records
Trigger AD replication manually
Then just reload dns zones and clear dns cache on all DNS servers by dnscmd /clearcache
The simplest way to this for dns servers is to add all dns servers in single MMC console on any one dns server and operate from there

Mahesh
0
 

Author Comment

by:sysengineer
ID: 39752282
Yes I have six host A records with the farm name that point each of the six servers in the farm and a host A record for each server in the farm (6) with that servers IP address.

Some of the clients are still XP most are Windows 7 pro.
0
 
LVL 19

Expert Comment

by:Patricksr1972
ID: 39752306
Cool. Are the clients complaining mostly xp user?
0
 

Author Comment

by:sysengineer
ID: 39752344
Not sure how many are XP.
0
 

Author Comment

by:sysengineer
ID: 39752359
Any thoughts on Connection broker load balancing vs. just DNS round robin?
0
 
LVL 19

Accepted Solution

by:
Patricksr1972 earned 500 total points
ID: 39753201
Well... in the connection broker you can add and remove any servers participating in that group (like in hardware load balancing) which is easier to maintain than only round robin.
In the latter you need to delete and add A records everytime and wait for DNS to replicate.
0

Featured Post

Don't lose your head updating email signatures!

Do your end users still have the wrong email signature? Do email signature updates bore you or fill you with a sense of dread? You can make this a whole lot easier on yourself by trusting an Exclaimer email signature management solution. Over 50 million users do...so should you!

Join & Write a Comment

I have been working as System Administrators since 2003. I recently started working as a FreeLancer and was amazed to find out that very few people are taking full advantage of their Windows Server Machines. Microsoft Windows Server comes with so…
New Windows 7 Installations take days for Windows-Updates to show up and install. This can easily be fixed. I have finally decided to write an article because this seems to get asked several times a day lately. This Article and the Links apply to…
This tutorial will walk an individual through locating and launching the BEUtility application to properly change the service account username and\or password in situation where it may be necessary or where the password has been inadvertently change…
This tutorial will walk an individual through the steps necessary to install and configure the Windows Server Backup Utility. Directly connect an external storage device such as a USB drive, or CD\DVD burner: If the device is a USB drive, ensure i…

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now