Hyper-V Replica broker between two domains

drClays 146 Reputation points
2024-08-23T12:37:15.0333333+00:00

Hello,

I have two separate domains with Failover Clusters.

One domain: contoso.local

Failover: CLS.contoso.local

Replica broker: Replica.contoso.local

Nodes: node1.contoso.local, node2.contoso.local, node3.contoso.local, node4.contoso.local

Secondary domain: domain.local

Failover: CLSHV.domain.local

Replica broker: ReplicaBroker.domain.local

Nodes: HV1.domain.local, HV2.domain.local

I have established trust between the domains and added DNS Conditional Forwarders on both domains.

I need to migrate VMs between failover clusters and would use Replica Broker to do this.

I have added a computer object (and replica object) to the Administrator group on all nodes.

I'm going to use Kerberos authentication but it's not working.

Firewall rules are enabled but when I tried to enable replica I got error with Kerberos authentication or connecting to the replica broker where port 80 is not enabled (Hyper-V Replica HTTP Listener (TCP-In) is enabled on all of the nodes).

Any ideas on how to replicate VMs between clusters?

Windows Server 2016
Windows Server 2016
A Microsoft server operating system that supports enterprise-level management updated to data storage.
2,522 questions
Windows Server
Windows Server
A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.
13,209 questions
Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
6,629 questions
Hyper-V
Hyper-V
A Windows technology providing a hypervisor-based virtualization solution enabling customers to consolidate workloads onto a single server.
2,733 questions
Windows Server Clustering
Windows Server Clustering
Windows Server: A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.Clustering: The grouping of multiple servers in a way that allows them to appear to be a single unit to client computers on a network. Clustering is a means of increasing network capacity, providing live backup in case one of the servers fails, and improving data security.
1,007 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. Ian Xue 37,541 Reputation points Microsoft Vendor
    2024-08-29T02:05:25.1833333+00:00

    Hi drClays,

    Hope you're doing well.

    1. Ensure that Kerberos authentication is correctly configured on both clusters.
    2. Ensure that the necessary firewall rules are enabled on all nodes. Specifically, verify that port 80 (HTTP) and port 443 (HTTPS) are open for inbound traffic. You mentioned that the Hyper-V Replica HTTP Listener (TCP-In) is enabled, but double-check the following:

    (1) Hyper-V Replica HTTP Listener (TCP-In)

    (2) Hyper-V Replica HTTPS Listener (TCP-In)

    1. Ensure that the Hyper-V Replica Broker is correctly configured on both clusters.
    2. In the "Hyper-V Settings" of each node, configure the replication settings to use Kerberos (HTTP) and specify the correct ports.
    3. Since you have already established trust between the domains and added DNS Conditional Forwarders, ensure that the DNS resolution is working correctly for all nodes and brokers across both domains.
    4. Use tools like 'ping' and 'telnet' to test connectivity between nodes and brokers on the specified ports.

    Best Regards,

    Ian Xue


    If the Answer is helpful, please click "Accept Answer" and upvote it.

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.