A. Hot-Standby mode and Active-Standby mode in High Availability



Similar documents
Web Authentication Application Note

How to access peers with different VPN through IPSec. Tunnel

UTM10 in multi-ssid, multi-vlan network with WMS5316. Network diagram

Scenario 1: One-pair VPN Trunk

Configuring High Availability for Embedded NGX Gateways in SmartCenter

Volume Replication INSTALATION GUIDE. Open-E Data Storage Server (DSS )

Layer 2 / Layer 3 switches and multi-ssid multi-vlan network with traffic separation

ISG50 Application Note Version 1.0 June, 2011

High-Availability User s Guide v2.00

Note: This case study utilizes Packet Tracer. Please see the Chapter 5 Packet Tracer file located in Supplemental Materials.

LinkProof And VPN Load Balancing

Data Replication INSTALATION GUIDE. Open-E Data Storage Server (DSS ) Integrated Data Replication reduces business downtime.

DATA CENTER. Best Practices for High Availability Deployment for the Brocade ADX Switch

Firewall Defaults and Some Basic Rules

2.0 Dual WAN Select Dual-WAN, you will see the following screen shot, Figure 0.1(Dual-WAN Screen Shot) Figure 0.1(Dual-WAN Screen Shot)

Redundancy Design Best Practices

SQL Server Mirroring. Introduction. Setting up the databases for Mirroring

DMH remote access. Table of Contents. Project : remote_access_dmh Date: 29/05/12 pg. 1

This techno knowledge paper can help you if: You need to setup a WAN connection between a Patton Router and a NetGuardian.

How To Configure Windows Server 2008 as a RADIUS Server with MS-CHAP v2 Authentication

Cisco - Configure the 1721 Router for VLANs Using a Switch Module (WIC-4ESW)

Quick Note 53. Ethernet to W-WAN failover with logical Ethernet interface.

Total Business Continuity with Cyberoam High Availability

Smart Tips. Enabling WAN Load Balancing. Key Features. Network Diagram. Overview. Featured Products. WAN Failover. Enabling WAN Load Balancing Page 1

VPN Consortium Scenario 1: Gateway-to-Gateway with Preshared Secrets

Configuring IPsec VPN with a FortiGate and a Cisco ASA

LAN TCP/IP and DHCP Setup

Configure VPN between ProSafe VPN Client Software and FVG318

VLAN 802.1Q. 1. VLAN Overview. 1. VLAN Overview. 2. VLAN Trunk. 3. Why use VLANs? 4. LAN to LAN communication. 5. Management port

Version : 2.0 Date : 2006/6/12

Configuration Notes 0215

Configuring TheGreenBow VPN Client with a TP-LINK VPN Router

SIP Internet Telephony Gateway

ThinkTel ITSP with Registration Setup Quick Start Guide

Please enter the Network WAN page and click the Edit icon of WAN1. Figure The WAN setting of Network

McAfee Endpoint Encryption Hot Backup Implementation

V310 Support Note Version 1.0 November, 2011

FSM73xx GSM73xx GMS72xxR Shared access to the Internet across Multiple routing VLANs using a Prosafe Firewall

Multi-Homing Security Gateway

Draytek Vigor 2820/2830 Configuration. A guide for Exa Resellers and IT Contractors

A Link Load Balancing Solution for Multi-Homed Networks

Routing Security Server failure detection and recovery Protocol support Redundancy

Based on the VoIP Example 1(Basic Configuration and Registration), we will introduce how to dial the VoIP call through an encrypted VPN tunnel.

Basic IPv6 WAN and LAN Configuration

VPN Configuration of ProSafe VPN Lite software and NETGEAR ProSafe Router:

Introduction. What is a Remote Console? What is the Server Service? A Remote Control Enabled (RCE) Console

SAN/iQ Remote Copy Networking Requirements OPEN iscsi SANs 1

VPN. VPN For BIPAC 741/743GE

How to Setup PPTP VPN Between a Windows PPTP Client and the DIR-130.

2012A Toshiba UCS IPedge Training UCS Website. IPedge Version 1.1 Calvin Lee

DOWNTIME CAN SPELL DISASTER

Digi Certified Transport Technician Training Course (DCTT)

Creating a VPN Using Windows 2003 Server and XP Professional

Astaro Deployment Guide High Availability Options Clustering and Hot Standby

Configuration Guide. How to set up the IPSec site-to-site Tunnel between the D-Link DSR Router and the Cisco Firewall. Overview

CCNP Switch Questions/Answers Implementing High Availability and Redundancy

24 Port Gigabit Ethernet Web Smart Switch. Users Manual

Reduce your downtime to the minimum with a multi-data centre concept

Chapter 2 Connecting the FVX538 to the Internet

VPN Consortium Scenario 1: Gateway-to-Gateway with Preshared Secrets

Citrix NetScaler 10 Essentials and Networking

Quick Installation Guide

NetSpective Global Proxy Configuration Guide

Configuring IPSec VPN Tunnel between NetScreen Remote Client and RN300

How To Load Balance On A Cisco Cisco Cs3.X With A Csono Css 3.X And Csonos 3.5.X (Cisco Css) On A Powerline With A Powerpack (C

OvisLink 8000VPN VPN Guide WL/IP-8000VPN. Version 0.6

Supporting Multiple Firewalled Subnets on SonicOS Enhanced

How to Create VLANs Within a Virtual Switch in VMware ESXi

IP Office Technical Tip

Abstract. Avaya Solution & Interoperability Test Lab

Wave SIP Trunk Configuration Guide FOR BROADVOX

Balancing and Gateway Failover

Remote Access via VPN Configuration (May 2011)

Workflow Guide. Establish Site-to-Site VPN Connection using RSA Keys. For Customers with Sophos Firewall Document Date: November 2015

How To Set Up A Vpn Tunnel Between Winxp And Zwall On A Pc 2 And Winxp On A Windows Xp 2 On A Microsoft Gbk2 (Windows) On A Macbook 2 (Windows 2) On An Ip

TotalCloud Phone System

VPN PPTP Application. Installation Guide

ExamPDF. Higher Quality,Better service!

Load Balance Mechanism

VPN Wizard Default Settings and General Information

Netgear TA612VMNF & TA612VLD Netgear WGR613VAL. Quality of Service (QOS) function

How to configure your Thomson SpeedTouch 780WL for ADSL2+

Technical Information Sheet Page 1 of 8

Virtual FAX Function in Vigor IPPBX 2820 Series

Virtual Private Network and Remote Access

Synology Disaster Recovery Deployment Guide Document ID

Firewall Load Balancing

GVRP Overview. Overview

How to setup PPTP VPN connection with DI-804HV or DI-808HV using Windows PPTP client

CyberData VoIP V2 Speaker with VoIP Clock Kit Configuration Guide for OmniPCX Enterprise

Firewall Defaults, Public Server Rule, and Secondary WAN IP Address

Internet Telephony PBX system IPX-1980

MN-700 Base Station Configuration Guide

How to configure VPN function on TP-LINK Routers

Viewing VPN Status, page 335. Configuring a Site-to-Site VPN, page 340. Configuring IPsec Remote Access, page 355

Prestige 623R-T. Quick Start Guide. ADSL Dual-link Router. Version 3.40

Enabling NAT and Routing in DGW v2.0 June 6, 2012

Networking and High Availability

Transcription:

High Availability (HA) is the feature that ensures the business continuity for your organization. IT staff can take HA as a simple solution for the disaster recovery. DrayTek utilizes the Common Address Redundancy Protocol (CARP) to avoid the system downtime, which could stop the normal operation and then causes considerable lost of the entire organization. As enabling the HA feature, the network administrator can set another Vigor3900(s) as the backup device(s) to deliver full routing services during the downtime of the main Vigor3900. The network administrator can use the Virtual IP (e.g., 192.168.39.3) for both master device and backup device HA configurations. During the system uptime, the master device (e.g., 192.168.39.1) would offer services and act as the Virtual IP. When the master device is temporarily out-of-service, the backup device(s) (e.g., 192.168.39.2) acts the Virtual IP and delivers all routing functions. This document introduces High Availability in 4 parts: A. Hot-Standby method and Active-Standby method B. Advanced parameters C. Configuration for High Availability Hot-Standby scenario D. Configuration for High Availability Active-Standby scenario A. Hot-Standby mode and Active-Standby mode in High Availability Hot-Standby mode: The primary and the secondary devices use the same public IP address for Internet Access. The secondary device will auto-synchronize the configurations from the primary device and cannot have different configurations from the primary device. The secondary device is always idle when the primary device is operating. When the primary device is down or is detecting no active switch port of its LAN or WAN interface, the secondary device will be up and take over the primary role. 1/14

Active-Standby mode: The primary and the secondary devices use different public IP address for Internet Access. The secondary device uses its own configuration which can be different from the primary device. The secondary device is also operating while the primary device is up and running. 2/14

B. Advanced Parameters 1. Redundant Method: a. Hot-Standby: The secondary Vigor3900 remains idle until detecting the malfunction of the Primary Vigor3900. b. Active-Standby: Primary Vigor3900 and the Secondary Vigor3900 can work simultaneously. 2. Config Synchronization Role: Only for Hot-Standby mode. The secondary Vigor3900 will synchronize the configurations from the Primary Vigor3900 automatically. 3. Config Synchronization IP: The IP address of the Primary Vigor3900. 4. Authentication Key: The key to encrypt the HA session. It prevents the HA system get stopped by attacks from fake HA control packets. Members in the same HA Group/VHID should have the same Authentication Key. 5. Advance Preemption Mode: For Hot-Standby mode only. User can choose it so the Primary Vigor3900 takes back the Master role once it is up again. a. Automatic: Primary Vigor3900 will take back the Master role once it is up from the last failure. b. Automatic Delayed: Add the delay before the Primary Vigor3900 takes back the Master role. c. Manual: The Primary Vigor3900 won t take back the Master role automatically until administrator re-actives it manually. 6. LAN Port Detection Mode: a. At Least One UP: Primary Vigor3900 will detect if the LAN Port Members in HA LAN Profiles are up, and will do HA while detecting none of the LAN Port Members is up. b. All Must Be UP: Primary Vigor3900 will detect if all the LAN Port Members in HA LAN Profiles are up, and will do HA while detecting any LAN Port Member is down. While selecting this mode, it is necessary to remove the LAN ports (for example: the LAN port3/ fiber LAN port.) that are not used from the LAN profile members in LAN >> Switch. C. Configurations High Availability in Hot-Standby method 3/14

DO NOT connect Primary Vigor3900 and Secondary Vigor3900 to the same switch before finishing all configurations. It is essential to prevent the auto configuration synchronization work before all configurations are done. The Primary Vigor3900 and the secondary Vigor3900 should have the LAN profiles with the exact same name (for example: lan1, lan2 and lan3) and the same VLAN ID. And the LAN profile IP of the Primary Vigor3900 and the secondary Vigor3900 must NOT be the same. 1. Configurations on the Primary Vigor3900 a. Open Applications >> High Availability >> High Availability Profile Setup, and click Add. Input the Profile name, HA LAN Profile, Virtual IP for Gateway, VHID and Role Primary then click Apply. VHID: VHID is for identifying group. The VHID of the corresponding HA LAN profile of the Primary and the Secondary Vigor3900 should be the same. Virtual IP for Gateway: The Virtual Gateway IP for LAN hosts. b. Open Applications >> High Availability >> High Availability General Setup. Redundant Method: Hot-Standy Config Synchronization Role: Primary 4/14

LAN Port Detection Mode: At_Least_One_Up Click Apply. 2. Configurations on the Secondary Vigor3900 a. Open Applications >> High Availability >> High Availability Profile Setup, and click Add. Input the Profile name, HA LAN Profile, Virtual IP for Gateway, VHID and Role as Secondary, and click Apply. VHID: VHID is for identifying group. The VHID of the corresponding HA LAN profile of the Primary and the Secondary Vigor3900 should be the same. Virtual IP for Gateway: The Virtual Gateway IP for LAN hosts. 5/14

b. Open Applications >> High Availability >> High Availability General Setup. Redundant Method: Hot-Standy Config Synchronization Role: Secondary Config Synchronization IP: The Primary Vigor3900 s LAN IP Priority ID: 1 (Priority ID means the backup priority for the secondary. There can be several secondary Vigor3900 to back up one primary Vigor3900. ID 1 means the secondary Vigor3900 will have the highest priority.) LAN Port Detection Mode: At_Least_One_Up Enable High Availability Click Apply. 6/14

3. After above settings are done, please connect the Primary Vigor3900 and the Secondary Vigor3900 to the same LAN switch for High Availability. 4. Open Applications >> High Availability >> High Availability Profile Setup for checking the HA status. We can see which Vigor3900 is acting as Master and the failed reason of the Primary Vigor3900. 7/14

D. Configurations High Availability in Active-Standby method 1. Configurations on the Primary Vigor3900 a. Open Applications >> High Availability >> High Availability Profile Setup then click Add. Input the Profile name, HA LAN Profile, Virtual IP for Gateway, VHID and Role Primary then click Apply. VHID: VHID is for identifying group. The VHID of the corresponding HA LAN profile of the Primary and the Secondary Vigor3900 should be same. Virtual IP for Gateway: The Virtual Gateway IP for LAN hosts. 8/14

b. Open Applications >> High Availability >> High Availability General Setup. Redundant Method: Active-Standy Tick Enable High Availability Click Apply. 9/14

2. Configurations on the Secondary Vigor3900 a. Open Applications >> High Availability >> High Availability Profile Setup then click Add. Input the Profile name, HA LAN Profile, Virtual IP for Gateway, VHID and Role as Secondary then click Apply. VHID: VHID is for identifying group. The VHID of the corresponding HA LAN profile of the Primary and the Secondary Vigor3900 should be the same. Virtual IP for Gateway: The Virtual Gateway IP for LAN hosts. 10/14

b. Open Applications >> High Availability >> High Availability General Setup. Redundant Method: Active-Standy Tick Enable High Availability Click Apply. 11/14

c. Select and Edit the s1 HA profile via Applications >> High Availability >> High Availability Profile Setup. Change the role to Backup and fill in the Master IP and the Priority ID. Click Apply. 12/14

3. Open Applications >> High Availability >> High Availability Profile Setup for checking the HA status. 13/14

We can see which Vigor3900 is acting as Master. 14/14

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information