mascalia
Posts: 36
Joined: 13.Feb.2008
Status: offline
|
I'm pretty sure you can't do what you want with only two ISA servers (or two ISA arrays) seperated by WAN links. A couple of thoughts come to mind.
First, ISA clustering is based on Microsoft Network Load Balancing (NLB) which doesn't work across a WAN. In fact, best practices for NLB are to have the NLB network adapters in a separate VLAN (or switch). There are many other reasons, but NLB across a WAN link isn't an option, so ISA clustering isn't an option.
Second, you didn't state if only the ISA servers would be in different data centers with your app servers in a central site (redundant links), or if you will have redundant app servers as well (a DR site, complete with backup ISA server and app servers). Not sure what Exchange CCR is; does it allow building a fail-over Exchange cluster over WAN links?
Regardless, though, if you have redundant links via separate ISA servers, you have to have a mechanism outside the two ISA servers to (a) detect the failed primary link and (b) redirect traffic to the backup link. There are many, many different ways to do this; routers can do it, front-end loadbalancer applicances can do it, firewalls can do it, even ISA can do it. Regardless, though, you'll need something else besides your two primary ISA servers to fill this role.
As an example, in our company we have a corporate load-balancing soution from F5 that performs two functions: it load-balances between the primary and backup data centers (for solutions that support such load-balancing), and also performs link/route redirection from the primary to backup link for solutions that don't support WAN load-balancing (such as webapp servers, etc...). At the two data centers, we will be installing ISA arrays.
Traffic from the 'net will come through the F5 solution, and get sent to the primary array. In the event of a link failure, the F5 solution will redirect traffic to the backup array at the backup data center. There's more to it than that, but the gist is that we needed something else in front of the two ISA arrays to detect failed links and redirect traffic. Unless I misunderstood your need, I think you're in the same boat, mate. 
Hope this helps. And if you find something different (or if I'm wrong), please come back and let me know.
Mike
quote:
ORIGINAL: johnisccp
I would like to setup a ISA 2006 cluster over the WAN if possible. I am setting up an Exchange 2007 CCR Cluster over WAN. Two Datacenter in different location. This is what I would like to happen. If primary ISA server fail, it will fail over to the standby ISA at the other Datacenter location. Has anyone done this or know how?
Thanks in advance.
< Message edited by mascalia -- 22.Oct.2008 3:36:48 PM >
|
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
Printable Version
Cluster ISA over WAN - 
New Messages
No New Messages
Hot Topic w/ New Messages
Hot Topic w/o New Messages
Locked w/ New Messages
Locked w/o New Messages
Post New Thread