cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
102427
Views
112
Helpful
33
Replies

CUCM warning: DNS unreachable

cukouncukoun
Level 1
Level 1

Hi all,

after upgrade CUCM from 8.6 to 11.0.1.20000-2 we found this warning message that DNS is unreachable on the publisher CUCM GUI.

When I tried to resolve some hostnames from both CUCM nodes through CLI it was normally worked so DNS is not unreachable.

Any ideas?

 

Thanks

Tomas

33 Replies 33

yeah... already try restart server twice times. Still doesn't work. :(

 I only use one DNS server. I already delete the secondary DNS server in case that cause issue. but still keep the same issue.

 

Hi All,

 

I have upgraded CUCM, Unity Connection and IMPS cluster servers from version 10.5 to 11.0 and I am getting the "DNS Unreachable" warning message on all the servers. I have configured two DNS entries on all the servers and both are reachable from CLI of all servers. All the DNS entries are on the DNS servers. In 10.5 version there was no such error message and nothing is changed on the DNS servers or on the network side. Is there BUG related to version 11.0?

 

Thank,

Vaijanath

Please rate helpful posts and if applicable mark "Accept as a Solution".
Thanks, Vaijanath S.

Hi,

please check event. log from RTMT or through CLI. There I found my DNS unreachable root cause issue.

 

Tom

Hi Vaijanath,

 

please attach the output for "Utils diagnose test" from the server you are seeing the alert.

 

JB

Hi Jitender,

 

Thank you for your help. I performed the diagnostic test and it showed me Reverse DNS lookup mismatch issue. The issues is corrected after updating the records in DNS server.

 

admin:utils diagnose test

Log file: platform/log/diag2.log

Starting diagnostic test(s)
===========================
test - disk_space          : Passed (available: 1520 MB, used: 12508 MB)
skip - disk_files          : This module must be run directly and off hours
test - service_manager     : Passed
test - tomcat              : Passed
test - tomcat_deadlocks    : Passed
test - tomcat_keystore     : Passed
test - tomcat_connectors   : Passed
test - tomcat_threads      : Passed
test - tomcat_memory       : Passed
test - tomcat_sessions     : Passed
skip - tomcat_heapdump     : This module must be run directly and off hours
test - validate_network    : Reverse DNS lookup mismatch
test - raid                : Passed
test - system_info         : Passed (Collected system information in diagnostic log)
test - ntp_reachability    : Passed
test - ntp_clock_drift     : Passed
test - ntp_stratum         : Passed
skip - sdl_fragmentation   : This module must be run directly and off hours
skip - sdi_fragmentation   : This module must be run directly and off hours

Diagnostics Completed

 

 

Thanks,

Vaijanath

Please rate helpful posts and if applicable mark "Accept as a Solution".
Thanks, Vaijanath S.

Hi Vaijanath,

 

Happy to help.

 

JB

Hi ,

I had this problem too,but can be resolved by adding manual DNS host entry in your DNS server.

Check "Update associated pointer PTR record" on DNS server or add Reverse Lookup Zone entry if there is none

@gtomek1 Why are you posting an answer on a post that is marked as solved and is 8 years old?



Response Signature


Hi,

Provided solution was indirect on my opinion.

Regards

The problem I'm having with this thread is that Cisco is treating this as if its a misconfiguration of DNS causing the issue.  That is simply not true.  Its a perfectly valid and common occurrence to have a server referred to by different names with the same IP address.  Heck, the PLM and CUCM run on the same server, but have to have different DNS entries.  According to this new 'check', it invalidates your DNS to do this, even though its perfectly fine. Cisco is acting like this is suddenly an incorrect DNS configuration and that its not a bug in their 'rigorous test'.  Cisco needs to just admit its a bug, and the workaround is to remove and DNS entries that you can live without.   

I had the same issue. CUCM PUB had two entries in DNS for reverse lookup.

Once removed, it didnt show that warning: DNS unreachable again :)

Tips:

nslookup at cmd level and utils diagnose test at CLI level helped us.

Regards

M Taha

derek.andrew
Level 1
Level 1

11.0 is a bit more rigorous in checking the DNS configuration. Do a "show network eth0". If your domain name has a trailing period, remove it (set network domain ...).

I had a system that did dhcp. It set our domain name with the trailing period. When we upgraded from 10.5.2 to 11.0 and the "DNS Unreachable" message appeared. It did not happen in 10.5.2 but these new checks in 11.0 were annoying.

Also, make sure your DNS has the correct forward and reverse entries.


@derek.andrew wrote:

Also, make sure your DNS has the correct forward and reverse entries.


This solved it for me on Unity Connection 14.0.

After a change in Active Directory, the reverse DNS PTR entry for the Unity Connection server didn't get put back in.

The error doesn't make it clear at all that that's what's going on, since it just says "DNS Unreachable" which was, in fact, not the case.

Putting the appropriate PTR in made the error go away.

michael mack
Level 1
Level 1

I have a brand new BE6K-S using the pre-loaded images on the CUCM and the 2921 router running version 11 that also has this issue.  The router is the DNS server in this case.  I'll check it for duplicate entries, but same exact symptoms.  Publisher says it can't reach the DNS server, but everything seems to work fine. Since this is the configuration that ships straight from Cisco and is supposed to be usable straight out of the box its a little surprising.  Whatever is new in version 11 seems to be a little too aggressive in checking DNS.  I'm hoping there's no actual functional issue and its just cosmetic.