DNS Issues with Devices in Sync Group

Question

I recently configured F5's DNS between some test DNS devices in two datacenters and trying to do a primary/standby datacenter configuration. The configuration is two virtual big-ip appliances in each datacenter running both DNS and LTM. I have configured a test virtual server in both datacenters and have DNS all configured. In total there are four DNS devices, two in each datacenter. They are all configured in a sync group. However I am only able to get a DNS reponse for the wide IP from the two DNS devices in the primary datacenter. The two DNS devices in the standby datacenter timeout when I try to lookup the record for the wide IP. Is this normal behavior?

brant_davis · Answer

When I use nslookup I am getting weird results.  Currently it is resolving to all four GTMs but I get dns timeouts before the response.  If I use dig it works everytime and is much faster with no timeouts.&nbsp;
Has anyone else seen anything similar to this?  This is my first time rolling out F5 DNS and just want to make sure everything is working properly.&nbsp;

simon_blakely · Answer

Have you verified that all the devices are connecting via iquery?&nbsp;
tmsh show gtm iquery&nbsp;
Have you checked using dig to all the DNS servers?&nbsp;
dig is the recommended tool for testing DNS, as nslookup does some unexpected things.  &nbsp;

brant_davis · Answer

S Blakely,&nbsp;
I have ran tmsh show gtm iquery and show all of them connected.  Dig is returning proper results on all of the GTMs.  Looks like nslookup was sending me down a rabbit hole with some mixed results.&nbsp;
Thanks for the response and things to check.&nbsp;

Forum Discussion

DNS Issues with Devices in Sync Group

3 Replies

Recent Discussions

BIG-IP DNS iRule issue with static variable

Using okta as SSO to login F5 GUI

(How) can I get two client certificates in one APM session?

BIG-IP DNS: Check Status Of Multiple Monitors Against Pool Member

Disk space full - what files, folders are safe to delete?

Related Content

Re: Automate Data Group updates on many Big-IP devices using Big-IQ or Ansible

Certified Kubernetes Administrator - Study Group

Device Management

Regex issue

Device ID not working for IOS iPhone devices