question

BojanZivkovic-6662 avatar image
0 Votes"
BojanZivkovic-6662 asked StoyanChalakov answered

Monitor DNS traffic between DCs and BIND servers (bi-directional) - SCOM 2019

Hi, we have conditional forwarders configured on DCs and replicated to all DCs in the forest - name resolution is handled by BIND servers authoritative for given DNS zone. Every once in a while name resolution fails - at that point of time I double check outbound tcp/53 and it returns false (Test-NetConnection). In order for this to work we requested tcp/53 & udp/53 bi-directionally between our DCs and BIND servers.

Is SCOM 2019 capable of monitoring tcp/53 & udp/53 traffic between DCs and BIND servers (in both direction - I do not have SCOM agent on BIND servers) and send us alert when communication goes down? Networking team is reluctant to monitor this using their tools (if any) so I would like to handle this myself.

msc-operations-manager
5 |1600 characters needed characters left characters exceeded
Toggle Comment visibility. Current Visibility: Visible to all users

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

StoyanChalakov avatar image
0 Votes"
StoyanChalakov answered

HI Bojan,

If the native SCOM template for Port monitoring does not help, than you can try this one:

Monitor network connections and listening ports with SCOM
https://4sysops.com/archives/monitor-network-connections-and-listening-ports-with-scom/

I think the Solution of Ruben will help you achieving this. Please take a look at it, haven't tried it myslef, but knowing Ruben it dont doubt that it will work just fine.
As mentioned, you can of course try monitoring port 53 on the DNS servers the native way - using the Port template in SCOM. Here a screenshot:
181095-dns.jpg

Hope I was able to help you out!

(If the reply was helpful please don't forget to upvote and/or accept as answer, thank you)

Regards
Stoyan Chalakov



dns.jpg (97.6 KiB)
5 |1600 characters needed characters left characters exceeded
Toggle Comment visibility. Current Visibility: Visible to all users

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.