Jump to content
Welcome to our new Citrix community!

Active Active GSLB and Static Proximity


Recommended Posts

Hi

 

Was looking for advice on the issue being seen with GSLB DNS resolution

 

We have NetScalers installed across two datacenters in the US and Japan with an intent to perform GSLB Active Active routing with static proximity configured ..Each NetScaler (2 in US and 2 in japan) are configured as the authoritative DNS server for the domain

gslb.company.com

Domain:gslb.company.com , SOA record for Domain created on each netscaler corresponding to the specific name server

Name servers:

NS1US.company.com

NS2US.company.com

NS1JP.company.com

NS2JP.company.com

 

NS -A records

NS1US.company.com - ADNS IP

NS2US.company.com - ADNS IP

NS1JP.company.com - ADNS IP

NS2JP.company.com - ADNS IP

 

 

Firewall opened from external any to ADNS ips for DNS

 

Each netscaler is configured with a local site and 3 remote sites representing each NS in the region

The GSLB sites are private IPs and are UP

GSLB method configured is Static Proxmity , static db is configured and is resolving the correct location

GSLB persistence is set , persistence IDs are set to the same number

 

However while performing a nslookup to the domain address gslb.company.com , we see the DNS reponses are not consistent and switches between US and JP , from a ASIA PC we would expect it to resolve the JP netscalers consistenly, however that doesnt seem to be the case

 

Would be grateful if you could advice on what could be done to fix this

 

Have enabled ECS and MIR is disabled , but doesnt seem to have helped much

 

 

Link to comment
Share on other sites

Added DNS actions and policy on the US netscalers to direct US based client IPs to hit the US netscalers and similarly created DNS action and policy for Japan

 

Bound it globally , however still no luck while theres been some improvement ...2 of 10 nslookup entries on the domain name get directed to the other region

 

Excerpts of DNS action and policy on US, would be grateful for any advice on what might be the issue

 

olicy

  Name: DNS_US_POL

        Rule: CLIENT.IP.SRC.MATCHES_LOCATION("North America.*.*.*.*.*")

        Action Name: DNS_US_LOC

        Hits: 0

        Undef Hits: 0

        Active: Yes

 

DNS Action

ActionName:  DNS_US_LOC  ActionType:  GslbPrefLoc

        PreferredLocList:  "North America.*.*.*.*.*"

 

> sh dns policy
1)      Name: internal-dns-false-pol
        Rule: FALSE
        Action Name: DNS-NOP
        Hits: 0
        Undef Hits: 0
        Active: Yes

2)      Name: DNS_US_POL
        Rule: CLIENT.IP.SRC.MATCHES_LOCATION("North America.*.*.*.*.*")
        Action Name: DNS_US_LOC
        Hits: 0
        Undef Hits: 0
        Active: Yes

> sh locationparameter
Static Proximity
----------------
Database mode: File
Flushing: Idle; Loading: Idle
Context: geographic
Qualifier 1 label: Continent
Qualifier 2 label: Country_Code
Qualifier 3 label: Subdivision_1_Name
Qualifier 4 label: Subdivision_2_Name
Qualifier 5 label: City
Qualifier 6 label: Organization

IPv4 Location file (format: netscaler):
 /var/netscaler/inbuilt_db/Netscaler_Maxmind_GeoIP_DB_IPv4.csv
Lines: 326644 Warnings: 0 Errors: 0
Current static entries: 326637  Current custom entries: 3

IPv6 Location File
Location file (format: ):
 Not loaded
Lines: 0 Warnings: 0 Errors: 0
Current static entries: 0  Current custom entries: 0

Match wildcard qualifier to any: YES
 Done

 

Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...