Solved

DHCP Failover Relationship caveats

Posted on 2016-11-07
6
116 Views
Last Modified: 2016-11-10
Hi mates,
looking to reinstall DHCP server(Serv-A) from 2012 to 2012R2 with same name and IP. This is partner server in dhcp relationship of two servers.

2nd partner(Serv-B) is already on 2012R2(installed couple of months before). MCLT of failover relationship is 1 hour and it is in load balance mode. Enable message authentication is checked with shared secret.

Now question is

1-)Is it necessary to remove relationship before demoting serv-A as the installation will took more than 1 hour?

Reason this is bothering me to have 2nd opinion is, last time when i was rebuilding serv-B from 2012 to 2012R2, i didnt break failover relationship between DHCPs. every configuration remain the same post promotion(i.e: IP, hostname, new certs in personal store). but under the failover status for partner server, it said:  state of the server :DOWN

So then i had to remove relationship and add both servers(New and Old) in new relationship, and replicate scopes from Serv-A to Serv-B to make them work in load balance mode onwards.

Looking for some guidelines around my question and best way of achieving this task.

Thanks
0
Comment
Question by:Steve McAuliffe
  • 3
  • 2
6 Comments
 
LVL 22

Expert Comment

by:eeRoot
ID: 41877970
Yes, remove the relationship of the old server.  Even if the new server name and IP match the old server, the server's AD SID is different.
1
 

Author Comment

by:Steve McAuliffe
ID: 41878056
Thanks eeRoot, i also wondering some precise guidelines about adding new server(coupling up) into new DHCP relationship. Though gone through some useful technet blogs/articles and have some knowledgebase from past but wanting to vet my below plan.

1-)After building server(serv-a) and adding AD, DNS, DHCP Role. stop dhcp server service and cleanup dhcp folder under system32, then start dhcp server service.

2-)On serv-a, from powershell - Create a failover relationship via add-dhcpserverv4Failover -ComputerName serv-a.abc.com -PartnerServer serv-b.abc.com -Name dhcp1-dhcp2 -ScopeID 10.1.0.0 -LoadBalancePercent 80 -SharedSecret **** -Force


3-)Now on dhcp console of serv-b , underneath in ipv4, click on configure failover scopes and select all scopes and trigger failover scopes replication.

Is this correct?

any sanity check before/after or additional steps or considerations around?
0
 
LVL 22

Expert Comment

by:eeRoot
ID: 41879884
Yes, that looks correct.
0
The Eight Noble Truths of Backup and Recovery

How can IT departments tackle the challenges of a Big Data world? This white paper provides a roadmap to success and helps companies ensure that all their data is safe and secure, no matter if it resides on-premise with physical or virtual machines or in the cloud.

 

Author Comment

by:Steve McAuliffe
ID: 41879961
Sorry to be a pain..but looking for some detail answer as

i am slightly confused about the scope id parameter in creating relationship
ScopeID 10.1.0.0
What is this for ? and is this need to be already exist on new server? any tips and tricks
0
 
LVL 40

Accepted Solution

by:
footech earned 500 total points
ID: 41881442
The scope that you want to setup for failover should only exist on the source server.  When you set up the failover relationship it creates the scope on the other server.

You can view the ScopeID by running Get-DhcpServerv4Scope (it's one of the properties returned).  You specify it because you're setting up failover for a particular scope, though you can specify multiple scopes to set up if you want.

You could use the Invoke-DhcpServerv4FailoverReplication cmdlet to initiate the scope replication instead of using the GUI if you want.  I would just do it from serv-a.  However, I don't recall if this part is even necessary, or if it's done automatically as part of the creation.
0
 

Author Closing Comment

by:Steve McAuliffe
ID: 41882835
Thanks Footech
0

Featured Post

Does Powershell have you tied up in knots?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article runs through the process of deploying a single EXE application selectively to a group of user.
This article describes my battle tested process for setting up delegation. I use this process anywhere that I need to setup delegation. In the article I will show how it applies to Active Directory
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

860 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question