sylvia,
Just curious, what kind of firewall are you using in
the backend ??
you can achieve load balancing for the backend servers
by doing the following (depending on the firewalls)
((assuming the local director subnet you are using is
in the public ip address space ))
1) doing "proxy" on the firewall, lets say that you
have
three backend servers (x,y & z) that offer the same
service (http/https 80/443) you can configure the
firewall such that x,y & z (80/443) all translate to
an ip address on the local director subnet "a
(80/443)".
when internet user(s) hit the url that points to "a"
(provided dns entry is configured for specific
url="a")
the request will be sent to the firewall and the
firewall will do the loadbalancing for you.
2) you can do static one to one NAT across the
firewall, that is z,y & z will become a2,a3 & a4.
then create a vip on the local director, binds the vip
to a2, a3 & a4, in this case the local director will
do the load balancing for you.
(of course, the dns entry for that specific url must =
the vip's ip address)
best of luck
henry
--- "Elaluf, Sylvia," <[EMAIL PROTECTED]>
wrote:
>
>
> > Morning all,
> >
> > I have the following setup for a design:
> >
> > One main firewall connected to the internet. From
> this firewall hangs a
> > local director that will do load balancing for a
> farm of web servers. Also
> > connected to that local director is a second
> firewall and behind that
> > firewall I have some database servers.
> >
> > Will it be possible to do also load balancing
> using the local director to
> > the servers behind the second firewall? The local
> director does balacing
> > for
> > machines in the same subnet, as the firewall only
> shows one ip address to
> > the local director how does the local director
> will know how to balance
> > the
> > servers behind the firewall?
> >
> > Has somebody implemented this design?
> >
> > Comments appreciated
> >
> > Regards
> >
> > Silvia Elaluf-Calderwood BSc MSc CCNA
> > IP Network Engineer - Technical Services COLT
> Telecom B.V
> > [EMAIL PROTECTED]
> > T: +31 (0)20-888-2092
> > "Problems cannot be solved at the same level of
> awareness that created
> > them." - Albert Einstein
> >
> > _________________________________
> > FAQ, list archives, and subscription info:
> > http://www.groupstudy.com/list/cisco.html
> > Report misconduct and Nondisclosure violations to
> [EMAIL PROTECTED]
>
> _________________________________
> FAQ, list archives, and subscription info:
> http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to
[EMAIL PROTECTED]
__________________________________________________
Do You Yahoo!?
Yahoo! Auctions - Buy the things you want at great prices! http://auctions.yahoo.com/
_________________________________
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
