Best practices Windows DNS forwarding to F5 DNS

Question

Hey,&nbsp;We currently are using our F5 DNS behind our Windows DNS (our Windows DNS forwards specific DNS requests to our two F5 DNS devices) - is there any best practices in this setup?&nbsp;The challenge we face currently is that Windows DNS will only round robin send requests to our two F5 DNS - if we lose one of the F5 devices half of the requests will obviously not work as Windows DNS is not smart enough to do health checks.&nbsp;The F5 devices are in a sync group so they are independent but configuration is synced between them.&nbsp;Is there a better / more intelligent way of setting this up? any direction to documentation would also be grateful.

nag · Accepted Answer

There is nothing you could do on F5 to solve your problem.

Here are the options you have:

1) Configure Windows DNS to track failed requests. If failed requests counter crosses certain threshold, stop sending DNS requests to that F5 DNS node, send all requests to the other F5 node and generate a Alert that one of the F5 DNS node is down.

2) If Windows DNS is not smart enough to do health monitoring, make it smart. For example, write a power-shell script to regularly check F5 DNS service availability

Hope this helps,

Nag

girma_tefera · Answer

Dear&nbsp;Nimbostratus,could you help me on the integration of Microsoft DNS forward to F5 DNS? If you can share me any documents related to this.&nbsp;

Forum Discussion

Best practices Windows DNS forwarding to F5 DNS

2 Replies

Recent Discussions

Chrome V 124+ on MacOS - Virtual Server Access Issue

F5Access | MacOS Sonoma

Transaction looks successful but file not downloading

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

F5 Access Guard Deprecated: ZTA APM

Related Content

AS3 Best Practice

F5 Certified Practice Exams

X-Forwarded-For Log Filter for Windows Servers

Cipher Suite Practices and Pitfalls

Security Best Practices for BIG-IP & BIG-IQ systems