Hey everyone,
I'm trying to implement a poor man's network/hardware redundancy setup with 4 fedora10 servers ( 2 nics in each) and two pix 501 firewalls. I've inherited the infrastructure and don't have budget for anymore.
I'm running a public webservice that talks to a mysql database. The client app can connect to the webservice using primary.company.com but if that fails (pix dies, isp down) then they are configured to use secondary.company.com.
I was looking at implementing the following topology:
internet
|
primary.company.com
pix1
192.168.40.1
|
192.168.40.10 server1 (web) 192.168.20.11
192.168.40.11 server2 (mysql) 192.168.20.10
|
192.168.20.1
pix2
secondary.company.com
|
internet
What my terrible ascii art may obscure is that each server has two nics and that one nic is connected to pix1 and the other to pix 2. The pix's are not cabled together.
On server1 and 2 I implemented policy based routing (ala lartc.org-howto-lartc.rpdb.multiple-links) so that web service connections coming in on pix1 go back out through pix1 and connections in on pix2 go back out on pix 2. I tested this and managed to hit the webservices from both urls. I can also ssh in to either server using either public ip too.
The problem I'm having is that i can't seem to ssh (or anything else for that matter) between server1 and server2 once the policy routing is applied. Both servers can still talk to the pix's (telnet console) and the outside network just not to eachother.
When I replace pix2 with a home router/switch I can communicate between the servers again. A traceroute from server1 to server2 (192.168.20.10->192.168.20.11) shows that the first hop is to the router and then server 2. Being on the same subnet i would not have expected to see the hop through the home router/switch.
There aren't any acl's applied to the inside interface on the pixs.
So any ideas as to why the servers won't talk to eachother anymore? Are there other ways to achieve this "failover".
Once again I don't really have budget to purchase more hardware and I'm trying hard not to introduce single point of failures. I'll be looking at clustering the web server and setting up db replication for the mysql box as another exercise.
Thanks in advance!
I'm trying to implement a poor man's network/hardware redundancy setup with 4 fedora10 servers ( 2 nics in each) and two pix 501 firewalls. I've inherited the infrastructure and don't have budget for anymore.
I'm running a public webservice that talks to a mysql database. The client app can connect to the webservice using primary.company.com but if that fails (pix dies, isp down) then they are configured to use secondary.company.com.
I was looking at implementing the following topology:
internet
|
primary.company.com
pix1
192.168.40.1
|
192.168.40.10 server1 (web) 192.168.20.11
192.168.40.11 server2 (mysql) 192.168.20.10
|
192.168.20.1
pix2
secondary.company.com
|
internet
What my terrible ascii art may obscure is that each server has two nics and that one nic is connected to pix1 and the other to pix 2. The pix's are not cabled together.
On server1 and 2 I implemented policy based routing (ala lartc.org-howto-lartc.rpdb.multiple-links) so that web service connections coming in on pix1 go back out through pix1 and connections in on pix2 go back out on pix 2. I tested this and managed to hit the webservices from both urls. I can also ssh in to either server using either public ip too.
The problem I'm having is that i can't seem to ssh (or anything else for that matter) between server1 and server2 once the policy routing is applied. Both servers can still talk to the pix's (telnet console) and the outside network just not to eachother.
When I replace pix2 with a home router/switch I can communicate between the servers again. A traceroute from server1 to server2 (192.168.20.10->192.168.20.11) shows that the first hop is to the router and then server 2. Being on the same subnet i would not have expected to see the hop through the home router/switch.
There aren't any acl's applied to the inside interface on the pixs.
So any ideas as to why the servers won't talk to eachother anymore? Are there other ways to achieve this "failover".
Once again I don't really have budget to purchase more hardware and I'm trying hard not to introduce single point of failures. I'll be looking at clustering the web server and setting up db replication for the mysql box as another exercise.
Thanks in advance!