Source:How to check DNS configuration: Difference between revisions
No edit summary |
(no '_' in domain Names, official notation of SEP sesam, orthography) |
||
Line 1: | Line 1: | ||
== General == | == General == | ||
Most of our customers face problems while configuring new clients. Often the | Most of our customers face problems while configuring new clients in SEP sesam. Often the sources of the problems are misconfigured DNS Servers or no functional DNS at all. This document describes how to use SEP sesam with DNS names and how to check whether if your DNS configuration is OK. | ||
DNS Servers | |||
whether if your DNS configuration is OK. | |||
== Requirements and Rules == | == Requirements and Rules == | ||
Line 12: | Line 8: | ||
* All DNS Names have to correctly resolve forward and reverse | * All DNS Names have to correctly resolve forward and reverse | ||
* If no DNS Server is available, the hosts file of the client and backup server have to be used for making systems available via DNS name | * If no DNS Server is available, the hosts file of the client and backup server have to be used for making systems available via DNS name | ||
* The Hostname of the SEP sesam Server must not include an underscore "_" sign (see | * The Hostname of the SEP sesam Server must not include an underscore "_" sign (see [http://en.wikipedia.org/wiki/Hostname#Restrictions_on_valid_host_names Wikipedia]) | ||
== Configuration == | == Configuration == | ||
Line 28: | Line 24: | ||
==== Linux ==== | ==== Linux ==== | ||
If | If a hosts file has to be used because of no DNS servers in your network, the file on the system is placed in: | ||
in: | |||
/etc/hosts | /etc/hosts | ||
Line 35: | Line 30: | ||
==== Windows ==== | ==== Windows ==== | ||
If you want to use a hosts file on windows Systems for working around DNS problems, the | If you want to use a hosts file on windows Systems for working around DNS problems, the file can be found in: | ||
file can be found in: | |||
C:\Windows\system32\drivers\etc\hosts | C:\Windows\system32\drivers\etc\hosts | ||
== Tools to check DNS Resolution == | |||
There are various tools which can be used to check the DNS resolution, they have up and downsides. | There are various tools which can be used to check the DNS resolution, they have up and downsides. | ||
The recommended way to check your | The recommended way to check your DNS configuration is to use [[How_to_check_DNS_configuration#sm_setup_check_resolution_.28recommended.29]] | ||
=== | === <tt>ping</tt> === | ||
ping is not a proper tool to check DNS resolution, it will not always be 100% correct. It is | <tt>ping</tt> is not a proper tool to check DNS resolution, it will not always be 100% correct. It is | ||
also not possible to correctly reverse resolve the DNS names. | also not possible to correctly reverse resolve the DNS names. | ||
=== | === <tt>nslookup</tt> (Windows and Linux) === | ||
This tool can be used to query and existing DNS Server for a certain hostname or ip address. It | This tool can be used to query and existing DNS Server for a certain hostname or ip address. It | ||
will NOT check the hosts file of the System. As such, you may get different results if you choose | will NOT check the hosts file of the System. As such, you may get different results if you choose | ||
to use nslookup. | to use <tt>nslookup</tt>. SEP sesam resolves its hostnames via 'common library function' and will first use | ||
the hostname specified in the | the hostname specified in the hosts file of the system. | ||
=== | === <tt>host</tt> (linux only) === | ||
As nslookup, host can be used to forward and reverse resolve hostnames and ip addresses. It | As <tt>nslookup</tt>, <tt>host</tt> can be used to forward and reverse resolve hostnames and ip addresses. It | ||
defaults to the | defaults to the name server configured in {{Path|/etc/resolv.conf}} but can also be used wit a certain | ||
DNS Server as additional argument. It will query the DNS Server of the System first. | DNS Server as an additional argument. It will query the DNS Server of the System first. | ||
=== | === <tt>sm_setup check_resolution</tt> (recommended) === | ||
This is the recommended way to check your DNS Resolution. Both | This is the recommended way to check your DNS Resolution. Both SEP sesam Client and SEP sesam Servers | ||
come with the sesam tool "sm_setup" installed. It can be used to forward and reverse resolve | come with the SEP sesam tool "<tt>sm_setup</tt>" installed. It can be used to forward and reverse resolve | ||
DNS names from the Command Line. | DNS names from the Command Line. | ||
Before you can use this tool, be sure to execute the SEP sesam profile like shown in this | Before you can use this tool, be sure to execute the SEP sesam profile like shown in this FAQ entry: | ||
FAQ entry: | |||
[[English_FAQ#A_support_staff_member_told_me_to_set_a_profile.2C_what_does_he_mean.3F]] | [[English_FAQ#A_support_staff_member_told_me_to_set_a_profile.2C_what_does_he_mean.3F|A support staff member told me to set a profile, what does he mean?]] | ||
It is recommended to run this command on the backup server AND on the client with different | It is recommended to run this command on the backup server AND on the client with different | ||
Line 81: | Line 74: | ||
The output of the command looks like this: | The output of the command looks like this: | ||
backupserver:~ # sm_setup check_resolution '''client''' | |||
Calling gethostbyname with ' '''client''' ' | Calling gethostbyname with ''''client'''' | ||
Official name: '''client.sep.de''' | Official name: '''client.sep.de''' | ||
Alternate name: client | |||
Address type: AF_INET | Address type: AF_INET | ||
Address length: 4 | Address length: 4 | ||
Line 92: | Line 86: | ||
Official name: '''client.sep.de''' | Official name: '''client.sep.de''' | ||
Alternate name: client | |||
Address type: AF_INET | Address type: AF_INET | ||
Address length: 4 | Address length: 4 | ||
Line 100: | Line 95: | ||
match. For example if the Official name which is returned from the reverse | match. For example if the Official name which is returned from the reverse | ||
resolve is different from the one specified on the command line, this will | resolve is different from the one specified on the command line, this will | ||
result in problems backing up the client (see [Common Error Messages]) | result in problems backing up the client (see [[How to check DNS configuration#Common Error Messages|Common Error Messages]]). | ||
The same values have to match on the client for the hostname of the backup | The same values have to match on the client for the hostname of the backup server: | ||
server: | |||
client:~ # sm_setup check_resolution | client:~ # sm_setup check_resolution '''backupserver''' | ||
Calling gethostbyname with ' | Calling gethostbyname with ''''backupserver'''' | ||
Official name: | Official name: '''backupserver.sep.de''' | ||
Alternate name: backupserver | |||
Address type: AF_INET | Address type: AF_INET | ||
Address length: 4 | Address length: 4 | ||
First IP Address: 172.16.1.146 | First IP Address: '''172.16.1.146''' | ||
Calling gethostbyaddr with '172.16.1.146' | Calling gethostbyaddr with ''''172.16.1.146'''' | ||
Official name: | Official name: '''backupserver.sep.de''' | ||
Alternate name: backupserver | |||
Address type: AF_INET | Address type: AF_INET | ||
Address length: 4 | Address length: 4 | ||
First IP Address: 172.16.1.146 | First IP Address: '''172.16.1.146''' |
Revision as of 22:18, 14 July 2011
General
Most of our customers face problems while configuring new clients in SEP sesam. Often the sources of the problems are misconfigured DNS Servers or no functional DNS at all. This document describes how to use SEP sesam with DNS names and how to check whether if your DNS configuration is OK.
Requirements and Rules
- SEP sesam needs a proper DNS to work, it will NOT work with IP Addresses only
- All DNS Names have to correctly resolve forward and reverse
- If no DNS Server is available, the hosts file of the client and backup server have to be used for making systems available via DNS name
- The Hostname of the SEP sesam Server must not include an underscore "_" sign (see Wikipedia)
Configuration
Common Error Messages
There are some common error messages which are an indication for errors in your name resolution:
CLIENT_HOSTNAME: Login to stpd from <CLIENT_HOSTNAME> to <SESAM_SERVER_HOSTNAME> incorrect.
Login incorrect. Client resolves his IP address [X.X.X.X] to [RANDOM_HOSTNAME], but server resolves it to [X.X.X.X]. Please adjust your name resolution. (0)
Hosts Files
Linux
If a hosts file has to be used because of no DNS servers in your network, the file on the system is placed in:
/etc/hosts
Windows
If you want to use a hosts file on windows Systems for working around DNS problems, the file can be found in:
C:\Windows\system32\drivers\etc\hosts
Tools to check DNS Resolution
There are various tools which can be used to check the DNS resolution, they have up and downsides. The recommended way to check your DNS configuration is to use How_to_check_DNS_configuration#sm_setup_check_resolution_.28recommended.29
ping
ping is not a proper tool to check DNS resolution, it will not always be 100% correct. It is also not possible to correctly reverse resolve the DNS names.
nslookup (Windows and Linux)
This tool can be used to query and existing DNS Server for a certain hostname or ip address. It will NOT check the hosts file of the System. As such, you may get different results if you choose to use nslookup. SEP sesam resolves its hostnames via 'common library function' and will first use the hostname specified in the hosts file of the system.
host (linux only)
As nslookup, host can be used to forward and reverse resolve hostnames and ip addresses. It
defaults to the name server configured in /etc/resolv.conf
but can also be used wit a certain
DNS Server as an additional argument. It will query the DNS Server of the System first.
sm_setup check_resolution (recommended)
This is the recommended way to check your DNS Resolution. Both SEP sesam Client and SEP sesam Servers come with the SEP sesam tool "sm_setup" installed. It can be used to forward and reverse resolve DNS names from the Command Line.
Before you can use this tool, be sure to execute the SEP sesam profile like shown in this FAQ entry:
A support staff member told me to set a profile, what does he mean?
It is recommended to run this command on the backup server AND on the client with different arguments. On the backup server, the second argument will be the desired hostname of the client. If executing the command at the client, the second argument will be the hostname of the backup server.
The output of the command looks like this:
backupserver:~ # sm_setup check_resolution client Calling gethostbyname with 'client' Official name: client.sep.de Alternate name: client Address type: AF_INET Address length: 4 First IP Address: 172.16.1.145 Calling gethostbyaddr with '172.16.1.145' Official name: client.sep.de Alternate name: client Address type: AF_INET Address length: 4 First IP Address: 172.16.1.145
As you can see the command will output the forward and reverse resolved hostname of the system. Both the addresses and hostnames which are returned have to match. For example if the Official name which is returned from the reverse resolve is different from the one specified on the command line, this will result in problems backing up the client (see Common Error Messages).
The same values have to match on the client for the hostname of the backup server:
client:~ # sm_setup check_resolution backupserver Calling gethostbyname with 'backupserver' Official name: backupserver.sep.de Alternate name: backupserver Address type: AF_INET Address length: 4 First IP Address: 172.16.1.146 Calling gethostbyaddr with '172.16.1.146' Official name: backupserver.sep.de Alternate name: backupserver Address type: AF_INET Address length: 4 First IP Address: 172.16.1.146