Knowledge Base

The VMware Knowledge Base provides support solutions, error messages and troubleshooting guides
 
Search the VMware Knowledge Base (KB)   View by Article ID
 

Using the VMware vCenter Server Heartbeat Utility DNSUpdate.exe (DNS)

Purpose

This article describes using the VMware vCenter Server Heartbeat DNSUpdate.exe tool.

Resolution

Background

DNSUpdate uses the dnscmd.exe to automate the change of IP addresses in a WAN environment, where different subnets are used for the Primary and Secondary servers. When the Secondary server becomes active, DNS is updated to change the forward and reverse lookup addresses from the Primary IP to Secondary IP address.

DNSUpdate runs each time a switchover or failover occurs. The DNSUpdate tool operates by first going to Active-Directory to get a list of all the DNS servers, then attempts to update the records for the protected server based on the command line arguments.

The following are the steps performed by DNSUpdate:

  1. Self-test (check that VMware vCenter Server Heartbeat is installed and the 3rd party tools are compatible).
  2. Get machine and environment identities.
  3. Get the list of Name Servers from Active Directory (if the -ns option is not used).
  4. For each Name Server check that it is contactable.
  5. For each contactable Name Server, identify if it is a Primary or Secondary (Slave) DNS.
  6. For each contactable Primary DNS extract the list of zones.
  7. For each IP Addresses that is to be removed:
    1. For each contactable Primary DNS that has a forward zone for the machine domain, attempt to remove the Forward record.
    2. For each contactable Primary DNS that has a reverse zone for the machine domain, attempt to remove the Reverse record.

  8. For each IP Addresses that is to be added:
    1. For each contactable Primary DNS that has a forward zone for the machine domain, attempt to add a Forward record.
    2. For each contactable Primary DNS that has a reverse zone for the machine domain, attempt to add a Reverse record.

  9. Update Secondary Servers. 

    For each contactable Secondary DNS request a Zone Refresh.

  10. Tidy up temporary storage.

The utility removes the A and PTR records for the protected server and replaces them with records for the new IP addresses. When it is run on a server, it checks the registry for the identity of the server. If it is running on the Primary server it removes the Secondary addresses, identified by -s switch and add the Primary addresses identified by the -p switch. When run on the VMware vCenter Server Heartbeat Secondary Server it does the reverse.

Enhanced Features:

  1. The DNSUpdate tool can be run after initial install, as it handles DNS configurations that have changed since then.
  2. Multiple IP addresses can be handled at the same time using multiple -s and/or -p.
  3. The DNSUpdate.exe handles failures and continues to attempt to update the DNS servers even when a server is unavailable or when a specific zone update fails.
  4. It has a self-test feature that checks that the system tools that it uses (dnscmd and ping) are compatible.
  5. Can specify name servers (if required) rather than query Active Directory.

Procedure

Usage of V01.05.05

Note: With V01.05.05 ,the requirement to have a Domain Controller is lifted, a Domain Controller is not required if the Server (host) Name, Domain, and the Name Servers are passed in the command line.

DNSUpdate [-h] [-v] [-d] [-ci] [[-selftest] | [[-cc appName Domain Destination] -r ipaddress -a ipaddress [-ns ipaddress] -p ipaddress -s ipaddress [ -name compname] [ -domain domain]]

If no parameters are passed, a self-test runs.

General Parameters:

-h : Displays this usage information.

-v : Displays the version of this program.

-selftest : Self tests the program.

-d : Debug (traces the program).

-t time : Number of Seconds that the Address can be held.

-r ipaddress : Remove this IP address.

-a ipaddress : Add this IP address.

-cc appName Domain Output : Run as if NFDNS Scripter for the given App and Domain and put the script in Output.

-p ipaddress : This is a Primary IP address.

-s ipaddress : This is a Secondary IP address which address is removed/added is dependant on if the machine is the Primary or Secondary.

-ns : Specify the IP Addresses of the DNS’s that are to be updated.

-ci : This parameter is used to allow zone/domain matching when the case is different. For example WAN1.qa does not normally match wan1.qa, this parameter allows them to match.

-name compname : Name of the server.

-domain domain : Domain Name.

Return Codes

0: Success : This returns if there have not been any errors that can cause DNSUpdate to be unable to complete its calls of DNSCMD. If any of the DNSCMD calls fail or if there are no contactable Name Servers, the Success return code is returned. This is intentional to allow the known situations where the DNS topology is inconsistent and/or flawed.

  1. Incorrect Usage
  2. Invalid Parameters
  3. Self-test error
  4. Fatal Windows error
  5. Incompatible DNSCMD.exe
  6. Heartbeat not correctly installed
  7. Invalid IP Address
  8. Ran out of memory
  9. No normal Zones on any DNS have had IP Address's added. This is returned when there has been no successful attempt to update a zone (not reverse zones).
  10. Domain Controller cannot be contacted

With VMware vCenter Server Heartbeat V5.5

Checking whether there are secondary DNS servers in the infrastructure

When VMware vCenter Server Heartbeat is configured for a WAN during installation, VMware vCenter Server Heartbeat automatically creates the required DNSUpdate tasks under the Tasks tab of the VMware vCenter Server Heartbeat Console. If VMware vCenter Server Heartbeat is initially installed in a LAN and later stretched to WAN or problems are encountered when DNSUpdate executes, the DNSUpdate tasks must be created manually.

  1. Determine detected Secondary servers using the DNSUpdate -d switch (the -d switch enables the debug mode) and look in the output for the below section:
    UpdateSecondaries
    Update secondary DNS servers
  2. If you see /zonerefresh commands on various DNS servers, you need to add Network Configuration tasks to both servers manually.

Creating a network configuration task that runs DNSUpdate in environments without secondary DNS servers

To create DNSUpdate tasks manually:

  1. Launch VMware vCenter Server Heartbeat Console.
  2. Click Application.
  3. Click the Tasks tab.
  4. Click User Accounts.
  5. Click Add.
  6. Enter the credentials for an account with rights to update the DNS (a member of the Administrators or Server Operators group on the target server).
  7. Click OK, then Close.
  8. Click Add to add a new task.
  9. Provide a descriptive name for the Task.
  10. Choose Network Configuration for Task type.
  11. Select either Primary or Secondary for the server the task needs to run on as appropriate.
  12. In the Command field, run the dnscmd command with appropriate flags as shown in the example.
  13. In the Run As field choose the user appropriate user account from the drop down and click OK.

Note: The DNSUpdate tool detects if it is being run on Primary or Secondary server by checking the registry.

For example, Dnsupdate -p <primary public IP address> -s secondary public IP address>

Creating a network configuration task that runs DNSUpdate in environments with secondary DNS servers

To create DNSUpdate tasks manually:

  1. Launch the VMware vCenter Server Heartbeat Console.
  2. Click on the Application.
  3. Click Tasks.
  4. Click User Accounts.
  5. Click Add.
  6. Enter the credentials for an account with rights to update the DNS (a member of the Administrators or Server Operators group on the target server).
  7. Click OK, then Close.
  8. Click Add to add a new task.
  9. Provide a descriptive name for the Task.
  10. Choose Network Configuration for Task type.
  11. Select either Primary or Secondary for the server the task needs to run on as appropriate.
  12. In the Command field, run the dnscmd command with appropriate flags as shown in the example.
  13. In the Run As field select the user appropriate user account from the drop down and click OK.

Note: To simplify the DNS update process, a batch file can be created to include all dnscmd instances, then a single network configuration task can be configured to run newly created batch files.

Example: Add the following 4 commands as separate Network Configuration tasks in the sequence listed for each detected Secondary DNS server replacing {…} with the appropriate value:

dnscmd {DNS server IP} /RecordDelete {fqdn} {netbios machine name} A {machine IP to remove} /f

dnscmd {DNS server IP} /RecordDelete {reverse zone name} {server IP truncated} PTR {fully qualified machine name} /f

dnscmd {DNS server IP} /RecordAdd {fqdn} {netbios machine name} {TTL} A {machine IP to add}

dnscmd {DNS server IP} /RecordAdd {reverse zone name} {server IP truncated} {TTL} PTR {fully qualified machine name}

DNSCMD Calls

  • /RecordAdd - Used to add both Forward (A) and Reverse (PTR) records.
  • /RecordDelete - Used to remove both Forward (A) and Reverse (PTR) records.
  • /Zonerefresh - Used to instruct a Secondary (Slave) DNS to refresh its zones.
  • -? - Used to extract the usage of DNSCMD so that its compatibility can be determined.
  • /EnumZones - Used to retrieve the list of zones.
  • /Info IsSlave - Used to identify Secondary (Slave) DNS’s.

Additional Information

 
vCSHB-Ref-389 
vCSHB-Ref-1648

Request a Product Feature

To request a new product feature or to provide feedback on a VMware product, please visit the Request a Product Feature page.

Feedback

Did this article help you?
This article resolved my issue.
This article did not resolve my issue.
This article helped but additional information was required to resolve my issue.
What can we do to improve this information? (4000 or fewer characters)
Actions
  • Bookmark Document
  • Email Document
  • Print Document
  • Subscribe to Document
  • Bookmark and Share