Solved: Reverse dns in ISE distributed deployment

xili5 · ‎05-23-2018

I am working on ISE distributed deployment with ISE 2.3 with patch 3.

From cisco official document, we need both forward and reverse dns record resolvable for all ise nodes. Customer uses cloud-based dns solution and have some issues to have reverse dns working. So customer likes to know

1. Which feature/function replies on reverse dns.

2. if we don't have reverse dns, what is the impact during or post ise distributed deployment.

Jason Kunst · ‎05-24-2018

Reverse DNS is required for ISE deployments, otherwise run into numerous issues

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCuj29194/?rfs=iqvred

https://communities.cisco.com/message/280378

https://www.cisco.com/c/en/us/td/docs/security/ise/2-3/admin_guide/b_ise_admin_guide_23/b_ise_admin_guide_23_chapter_011.html#ID209

· Configure the forward and reverse DNS lookup for all Cisco ISE nodes in your distributed deployment in the DNS server. Otherwise, you may run into deployment related issues when registering and restarting Cisco ISE nodes. Performance might be degraded if reverse DNS lookup is not configured for all the nodes.

View solution in original post

Jason Kunst · ‎05-24-2018

Reverse DNS is required for ISE deployments, otherwise run into numerous issues

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCuj29194/?rfs=iqvred

https://communities.cisco.com/message/280378

https://www.cisco.com/c/en/us/td/docs/security/ise/2-3/admin_guide/b_ise_admin_guide_23/b_ise_admin_guide_23_chapter_011.html#ID209

· Configure the forward and reverse DNS lookup for all Cisco ISE nodes in your distributed deployment in the DNS server. Otherwise, you may run into deployment related issues when registering and restarting Cisco ISE nodes. Performance might be degraded if reverse DNS lookup is not configured for all the nodes.