Downloads |
Document ID: 13397
Questions
Introduction
If I import a forward zone (from Berkeley Internet Name Domain [BIND] format), does it create the PTR records in the reverse zone if I have selected the option to update the reverse zone?
What version of Berkeley Internet Name Domain (BIND) is CNR based on?
How do I configure dynamicDomain Name Server (DNS)(DDNS)?
How do I configure DHCP Safe Failover?
How do I set DHCP to always updateDomain Name Server (DNS)?
What versions of CNR support DHCP Safe Failover?
Why is the initial DHCP lease only one hour when DHCP failover is configured?
What does the message "Cluster xxxx is locked by username@hostname" mean?
Does the built-in TFTP server in CNR 3.5.3 start automatically?
How do I assure that all XFER updates ofDomain Name Server (DNS)get through?
How do I change the IP address of a secondary CNR server?
How do I change the size of the log files in CNR 3.5.x?
How many characters can I specify for a host name under CNR?
What does the dbcheck -a mcddb command do?
How do I correctly exit the Network Registrar GUI?
How do I view GUI resource records in the CNR server?
How do I get the command-line interface (CLI) listRR all command to show the resource record?
Is there a way to find where Lightweight Directory Access Protocol (LDAP) is assigned within the SRV resource records?
NetPro Discussion Forums - Featured Conversations
Related Information
Introduction
This document provides answers to frequently asked questions about Cisco Network Registrar (CNR).
For more information on document conventions, refer to the Conventions Used in Cisco Technical Tips.
Q. If I import a forward zone (from Berkeley Internet Name Domain [BIND] format), does it create the PTR records in the reverse zone if I have selected the option to update the reverse zone?
A. No.
Q. What version of Berkeley Internet Name Domain (BIND) is CNR based on?
A. CNR is not based on BIND, but is developed seperately from BIND. It is written to follow several
Domain Name Server (DNS)RFCs, which is also the case for BIND.
Q.
How do I configure dynamic Domain Name Server
(DNS)
(DDNS)?
A. Complete these steps:
- In the DNS tab for the scope, enter the proper DNS zone names and the IP address of the server that you wish to update, as shown here: Figure 1
- If the DNS server is a CNR server, go to the DHCP tab for each DNS zone that receives updates and enter the IP address of the servers from which the zone accepts DNS updates (see Figure 2). If you run DNS/DHCP on the same system, use the loopback address in both locations. Figure 2
A. For further information, refer to Configuring and Troubleshooting DDNS on CNR.
Q. How do I configure DHCP Safe Failover?
A. You can configure your network in a variety of ways—from simple (where a server has a backup server) to more complicated arrangements. These are three typical configurations:
- Simple —A single main server and its backup server.
- Backoffice —Many main servers with a single backup server.
- Symmetric —The network is divided between two servers that back up one another's configuration.
Note: DHCP Safe Failover currently can only be configured through the command line interface (CLI).
Simple DHCP Failover
A. Complete these steps:
- Main Server:
- Issue the dhcp enable failover command to enable failover for this DHCP server.
- Issue the dhcp set failover-backup-server=backupserver.example.com command to specify the name of the backup server.
- Issue the server dhcp reload to reload the server.
- Backup Server:
- Issue the dhcp enable failover command to enable failover for this DHCP server.
- Issue the dhcp set failover-main-server=mainserver.example.com command to specify the name of the main server.
- Issue the server dhcp reload command to reload the server.
Backoffice DHCP Failover
A. Complete these steps:
- Main Server-a:
- Issue the dhcp enable failover command to enable failover for this DHCP server.
- Issue the dhcp set failover-backup-server=server-c.example.com command to specify the name of the backup server.
- Main Server-b:
- Issue the dhcp enable failover command to enable failover for this DHCP server.
- Issue the dhcp set failover-backup-server=server-c.example.com command to specify the name of the backup server.
- Backup Server-c: You can specify only one default main server. If you have more than one main server, list the scopes of the other servers individually. This example enables failover for each scope on the two main servers, and designates the main server for each scope.
- Issue the scope scope1 set failover=scope-enabled command to enable failover for scope1.
- Issue the dhcp set failover-main-server=server-a.example.com command to specify the name of the main server.
- Repeat Steps 1 and 2 for scope2 and scope3.
- Isuse the scope scope4 set failover=scope-enabled command to enable failover for scope4.
- Issue the dhcp set failover-main-server=server-b.example.com command to specify the name of the main server.
- Repeat Steps 4 and 5 for scope5 and scope6.
Symmetric DHCP Failover
A. Complete these steps:
- Server-a:
- Issue the scope scope1 set failover=scope-enabled command to enable failover for this scope.
- Issue the scope scope1 set failover-backup-server=server-b.example.com command to specify the name of the backup server.
- Repeat Steps 1 and 2 for scope2 and scope3.
- Issue the scope scope4 set failover=scope-enabled command to enable failover for this scope.
- Issue the scope scope4 set failover-main-server=server-b.example.com command to specify the name of the main server.
- Repeat Steps 4 and 5 for scope5 and scope6.
- Server-b:
- Issue the scope scope1 set failover=scope-enabled command to enable failover for this scope.
- Issue the scope scope1 set failover-main-server=server-b.example.com command to specify the name of the main server.
- Repeat Steps 1 and 2 for scope2 and scope3.
- Issue the scope scope4 set failover=scope-enabled command to enable failover for this scope.
- Issue the scope scope4 set failover-backup-server=server-b.example.com command to specify the name of the backup server.
- Repeat Steps 4 and 5 for scope5 and scope6.
Q.
How do I set DHCP to always update Domain Name Server
(DNS)?
A. Issue the dhcp set force-dns-updates=true command.
Q. What versions of CNR support DHCP Safe Failover?
A. DHCP Safe Failover was first introduced in CNR 3.0 and 3.0T.
Q. Why is the initial DHCP lease only one hour when DHCP failover is configured?
A. When a DHCP client obtains the lease for the first time, the lease is for only one hour, even though the lease time in the policy is much longer. This happens only in scenarios where DHCP failover is used. In the failover scenario, the maximum client lead time (MCLT) is configured so that there is enough time for the backup server to synchronize with the main server. The recommended MCLT is one hour. This is needed only for new clients that are granted a lease for the first time, and is not applicable for lease renewals. After the initial one-hour lease is renewed, the client gets the lease specified in the lease policy. In CNR, customers can modify the MCLT to a lower or a higher value.
Q. What does the message "Cluster xxxx is locked by username@hostname" mean?
A. This means that the data on this server is in the process of modification by another user; you risk data corruption if you continue. Pay close attention to the warning message, and contact the person the message refers to before you proceed.
CNR versions 3.5 and later offer a read-only GUI that allows you to proceed without danger.
Q. Does the built-in TFTP server in CNR 3.5.3 start automatically?
A. No, you must start it manually. To initially start the TFTP server (for this boot), issue the server tftp start command.
To start initially and on any future reboots, issue these commands:
nrcmd> server tftp start nrcmd> tftp enable start-on-reboot nrcmd> save
Q.
How do I assure that all XFER updates of Domain Name Server (DNS) get
through?
A. CNR imposes a maximum limit of ongoing transfers (XFERs) on both the (XFER) server and client sides. The defaults are five parallel outgoing XFERs and three parallel incoming XFERs. If the outgoing limit is reached, the XFER server returns a serv-fail to the XFER request, which explains the secondary log messages. To configure this limit, issue these commands:
nrcmd> session set visibility=3 nrcmd> dns set xfer-server-concurrent-limit=some desired numberNote: CNR imposes this limit to protect the DNS server from XFER saturation, which could cause it to steal CPU cycles from other activities, such as DNS queries and dynamic DNS (DDNS). Use caution if you choose to increase these limits.
Q. How do I change the IP address of a secondary CNR server?
A. To change the IP address of a secondary server, complete these steps:
- DNS—To change from primary to secondary or vice versa, you must delete the zone and re-add it.
- DHCP—Issue these commands:
andnrcmd> dhcp set failover-backup-server=IP addressnrcmd> dhcp set failover-main-server=IP address
Q. How do I change the size of the log files in CNR 3.5.x?
A. In CNR 3.5.x and earlier, you must stop the CNR server agent and then restart it after you change the setting. After you exit nrcmd, you must stop and restart the services in order for the change to take effect. The log options are actually command line options to the server process itself, so you need a new incarnation of the process to have these changes take effect. A stop and restart or reload of a specific server is actually only a pause and resume of the server process (in order to reread internal configuration changes) and does not create a new incarnation of the server process.
To stop any related processes on Solaris, issue these commands:
> /etc/init.d/aicservagt stop > ps -leaf | grep nwr > kill -9 pid pid ... !--- All processes are noted in the ps output.On Windows NT, issue the net stop "AIC Server Agent 2.0" command.
Run the mcdadmin Utility
A. Complete these steps:
- Create a file (biglogs.txt) with these lines:
The servers are internally designated as shown here:[ config/clusters/1/trampolines/1/servers/1 ] load_args = str:"-A nlogs=5 -A logsize=10000000" [ config/clusters/1/trampolines/1/servers/2 ] load_args = str:"-A nlogs=5 -A logsize=10000000" [ config/clusters/1/trampolines/1/servers/4 ] load_args = str:"-A nlogs=5 -A logsize=10000000"(The x file extension stands for 01, 02, and so on, incremented up to the total number of files you specify.)
- servers/1 —DNS server—name_dns_1_log.x files
- servers/2 —DHCP server—name_dhcp_1_log.x files
- servers/3 —UI—logs are not required
- servers/4 —TFTP server—file_tftp_1_log.x files
- Run the mcdadmin utility to include the file:
> mcdadmin -N admin -P password -o -i biglogs.txt- Restart the Network Registrar service:
- On Solaris, issue the /etc/init.d/aicservgt start command.
- On Windows NT, issue the net start "AIC Server Agent 2.0" command.
Q. How many characters can I specify for a host name under CNR?
A. You can have up to 24 characters in a host name, as documented in RFC 952.
Q. What does the dbcheck -a mcddb command do?
A. The command dbcheck verifies the integrity of the database and reports problems.
Q. How do I correctly exit the Network Registrar GUI?
A. Disconnect from the cluster before you leave the GUI to avoid any database corruption.
Q. How do I view GUI resource records in the CNR server?
A. To view GUI resource records, complete these steps:
- Go to the
Domain Name Server (DNS)server.- Choose Properties.
- Click the Advanced tab.
- Click the refresh resource index button, and then click OK.
Q. How do I get the command-line interface (CLI) listRR all command to show the resource record?
A. Issue the dns rebuildRR-indexes command.
Q. Is there a way to find where Lightweight Directory Access Protocol (LDAP) is assigned within the SRV resource records?
A. To view all dynamic
Domain Name Server (DNS (DDNS))resource records in a given zone, issue the zone listRR dynamic > filename command. This command pipes the output of the listRR command to the filename file. This file can be viewed with any text editor.
NetPro Discussion Forums - Featured Conversations
| NetPro Discussion Forums - Featured Conversations for Network Management |
| Network Infrastructure: Network Management |
| Virtual Private Networks: Network and Policy Management |
Related Information
| Updated: Oct 26, 2005 | Document ID: 13397 |