Monitor DNS traffic between DCs and BIND servers (bi-directional) - SCOM 2019

Bojan Zivkovic 21 Reputation points
2022-03-08T08:27:12.317+00:00

Hi, we have conditional forwarders configured on DCs and replicated to all DCs in the forest - name resolution is handled by BIND servers authoritative for given DNS zone. Every once in a while name resolution fails - at that point of time I double check outbound tcp/53 and it returns false (Test-NetConnection). In order for this to work we requested tcp/53 & udp/53 bi-directionally between our DCs and BIND servers.

Is SCOM 2019 capable of monitoring tcp/53 & udp/53 traffic between DCs and BIND servers (in both direction - I do not have SCOM agent on BIND servers) and send us alert when communication goes down? Networking team is reluctant to monitor this using their tools (if any) so I would like to handle this myself.

Operations Manager
Operations Manager
A family of System Center products that provide infrastructure monitoring, help ensure the predictable performance and availability of vital applications, and offer comprehensive monitoring for datacenters and cloud, both private and public.
1,419 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. SChalakov 10,271 Reputation points MVP
    2022-03-08T19:28:01.45+00:00

    HI Bojan,

    If the native SCOM template for Port monitoring does not help, than you can try this one:

    Monitor network connections and listening ports with SCOM
    https://4sysops.com/archives/monitor-network-connections-and-listening-ports-with-scom/

    I think the Solution of Ruben will help you achieving this. Please take a look at it, haven't tried it myslef, but knowing Ruben it dont doubt that it will work just fine.
    As mentioned, you can of course try monitoring port 53 on the DNS servers the native way - using the Port template in SCOM. Here a screenshot:
    181095-dns.jpg

    Hope I was able to help you out!

    ----------

    (If the reply was helpful please don't forget to upvote and/or accept as answer, thank you)

    Regards
    Stoyan Chalakov

    0 comments No comments