Application Delivery (ADX)

Reply
N/A
Posts: 1
Registered: ‎03-28-2012

ServerIron 24xl network placement w/ HA (High Availability)

Hello,

We have two serveriron 24xl's that we are testing and trying to deploy in a fault tolerant design within our datacenter.  We are looking to deply the serverirons in active/passive HA configuration in the following matter on the same local network.  This may not be possible, which may not be possible, but we are open to best practice suggestions.

Firewall1       Firewall2

     |                  |

SW1      ----     SW2        

     |           X         |

   LB1                 LB2

-   fw's in active passive setup which requires ports on both firewalls to be active (rx&tx). if connected directly to the serverirons, then the firewall       connected to passive SI doesn't rx/tx

- All real servers are connected to the switches.

This configuration with the network layout shown above didn't work. Below is our config.  Thank you in advcance for your assistance.  We would like to keep a flat local network but fault tolerance and support/best practice config is most important.

-Eddie

Current configuration:
!
ver 07.5.00fT12
global-protocol-vlan
!
!
server backup ethe 22 zzzz.zzzz.zzzz.zzzz vlan-id 2
server session-limit 200000
server max-url-switch 80000
server predictor round-robin
server port 80
tcp keepalive 5 1
server port 443
tcp keepalive 5 1
server reset-message
!
!
server real Gold1 10.1.1.60
port http
port http keepalive
port http url "GET /do/lbtest.html"
port ssl
port ssl keepalive
!
server real Silver1 10.1.1.61
port http
port http keepalive
port http url "GET /do/lbtest.html"
port ssl
port ssl keepalive                                             
!
server real Copper1 10.1.1.62
port http
port http keepalive
port http url "GET /do/lbtest.html"
port ssl
port ssl keepalive
!
server real camaro1 10.1.1.56
port http
port http keepalive
port http url "GET /do/lbtest.html"
port ssl
port ssl keepalive
!
server real camaro2 10.1.1.57
port http
port http keepalive
port http url "GET /do/lbtest.html"
port ssl
port ssl keepalive
!
!                                                               
server virtual VirtServer 10.1.1.200
sticky-age 60
predictor response-time
port default sticky
port ssl sticky
port ssl session-id-switching
port http sticky
bind ssl camaro1 ssl camaro2 ssl
bind http camaro1 http camaro2 http
!
!
!
vlan 1 name DEFAULT-VLAN by port
no spanning-tree
!
vlan 2 by port                                                  
untagged ethe 22
no spanning-tree
!
enable telnet authentication
enable telnet password .....
enable super-user-password .....
hostname LB1
ip address 10.1.1.5 255.255.255.0
ip default-gateway 10.1.1.1
ip dns domain-name domain.local
web-management enable ethe 23 to 24
!
!
                                                              
end

Join the Community

Get quick and easy access to valuable resource designed to help you manage your Brocade Network.