In trying to test a platform migration, we went through all the steps to move data from our old server to our new server then dropped a modified hosts file on a test client to make it think that every component server in our old BigFix was our new server. This worked fine except when it came to seeking our failback server. Even though x-bes-fallback-server is defined by hostname and that hostname is redirected in the hosts file (along with the root server and all relay servers), the relay selection process found the ârealâ address for the fallback server and connected to it instead.
I was able to bypass this by blocking that IP address in the test clientâs firewall (HA! SO THERE!), but itâs odd that every other address redirected to the new server except the fallback.
(This wonât be a concern when we perform the ârealâ migration, as only the root server will be redirected via DNS and all existing relaysâfallback includedâwill still be normally reachable as they will be communicating with the new server as well.)
I feel like I had success with the lastfallbacklist a few years back & hosts when I setup our environment, but maybe not. Making a mental note for the future
I can double-check, but my guess is that OS-level DNS caching may have interfered here (i.e. I donât believe weâre doing anything different for resolving fallback Relays).
Ensure you have both the short hostname and the fully-qualified names for the last-fallback-relay name defined in the HOSTS file. When the client uses the HOSTS file for name resolution, it doesnât apply the same âDNS Suffix Search Orderâ logic defined on your network adapter as it would for a DNS query.
Oh, the setting works fine as is⌠itâs just that relay selection apparently works differently than the rest of the BigFix network processes, so something that works for the rest (hosts file) does not work for that process. The same is true for nslookup on Windows. Itâs not a test of name-to-IP processing; itâs literally âname server lookupâ, so it does not look at the hosts file at all.
ORLY? We have so many subdomains in use here that we pretty much never do anything by short name.
/me goes to checkâŚ
Yeah⌠the fqdn in the x-bes-fallback-server masthead setting has a domain thatâs not part of our DNS Suffix Search Order. Thereâd be no way for this computer to come up with that domain as an option for the shortname, so it can;t just be asking by short name(⌠can it? Networking is the are where Iâm weakest.).