Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

Does NLB support different subnet at Extarnal or Internal NIC ?

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [ISA 2006 Firewall] >> Network Infrastructure >> Does NLB support different subnet at Extarnal or Internal NIC ? Page: [1]
Login
Message << Older Topic   Newer Topic >>
Does NLB support different subnet at Extarnal or Intern... - 30.May2008 5:33:50 PM   
moshiur

 

Posts: 15
Joined: 21.Oct.2006
Status: offline 		Hello! I am planning to install ISA 2006 Enterprise edition at both places ( Area: B & Area: C) in my complex INTRANET. My target is to provide redundant internet connectivity to either one place by HSRP or load lancing at both places. What I found in Microsoft ISA 2004 (EE) document ( http://download.microsoft.com/download/6/9/0/690d2ee7-a4e0-4c0a-80d4-1e30ebcac1de/ISA_2004_EE_Configuration_Guide.doc ) everywhere they used same subnet for NLB at both ISA.  
I coordinated to both ISP's and they agree to provide us BGP for failover & failback between Router B & Router C.
I can configure my routers two ways:
1.       HSRP configure between two routers so that either one ISP should work in my Enterprise internal network.
2.       Bandwidth load balance between two ISP's
I don't have any problem with ISP's as they are giving BGP facilities. I can provide internet at both ISA external Interface with Public IP.   
 
Area: B
External NIC
DIP: 202.40.186.1
SM: 255.255.255.0
DG: 202.40.186.2
ISA 2006 EE (Enterprise Edition)
Internal NIC
DIP: 172.16.4.4
SM: 255.255.248.0
DNS: 172.16.4.51
Area: C
External NIC
DIP: 203.76.127.5
SM: 255.255.252.0
DG: 203.76.127.4
ISA 2006 EE (Enterprise Edition)
Internal NIC
DIP: 172.16.144.4
SM: 255.255.248.0
DNS: 172.16.4.51
 
To configure NLB
Qustion1: I am not sure weather it should work with different subnet or not. Do I have to use same series public IP /or same subnet at both place? 
 
Question2:  If I keep online both ISA to supply us internet at both places,  does it support redundant / NLB  to each other ?
 
Question3: If ISA( AreaB) goes down, does ISA (area:C ) take over all connectivity ?

I have given here my diagram for your sugession. Please share your advice for best solution.




< Message edited by moshiur -- 30.May2008 6:00:16 PM >
Post #: 1
RE: Does NLB support different subnet at Extarnal or In... - 2.Jun.2008 5:06:14 AM   
Jason Jones

 

Posts: 1782
Joined: 30.Jul.2002
From: United Kingdom
Status: offline 		Nope, NLB is currently subnet bound.

The best you can do is use ISA EE and create two arrays (one at each location) as this would allow for Enterprise management and allow each site to scale.

You could then use two servers at each location with NLB to provide ISA load balancing and failover. You could intially start with a single server at each site (albeit without server HA) and then add more servers when you can.

Cheers

JJ

< Message edited by Jason Jones -- 2.Jun.2008 5:29:02 AM >

_____________________________

Jason Jones
Silversands Ltd
http://www.silversands.co.uk
View My Blog: http://blog.msfirewall.org.uk/

Get Our NEW ISA 2006 Book!: http://tinyurl.com/2gpoo8

(in reply to moshiur)
Post #: 2
RE: Does NLB support different subnet at Extarnal or In... - 2.Jun.2008 11:13:59 AM   
moshiur

 

Posts: 15
Joined: 21.Oct.2006
Status: offline 		Hi Jason Jones

The thing is that we are using single domain in our enterprise internal network and its a nationalwide WAN connected to each dristricts where allowed internet users group is based on windows authentication. I mean all users are  web proxy clients. I configured ISA 2006 EE (Enterprise Edition ) at AREA: B and where web mail (Exchange server at Internal Network) published through ISA.  

PLAN for Area: C
We have our enough resource ( Hardware & Software ISA server 2006 EE) at AREA: C but I am waiting to get a right plan so that we can use one another reduandant server/failover  for both ISP.

IP subnets are different at both place of datacenter (Production & DRS). I am giving in below exectly the same all IP :
Area: B
External NIC
DIP: 202.40.186.18  ( ISP-1)
SM: 255.255.255.240
DG: 202.40.186.17
ISA 2006 EE (Enterprise Edition)

Internal NIC
DIP: 172.16.4.4
SM: 255.255.254.0
DNS: 172.16.4.51

Area: C
External NIC
DIP: 203.76.127.10  ( ISP-2)
SM: 255.255.255.248
DG: 203.76.127.9
ISA 2006 EE (Enterprise Edition)
Internal NIC

DIP: 172.16.144.4
SM: 255.255.248.0
DNS: 172.16.4.51

I am not clear from your shote notes. Can you please explain me details ? or give me any example ?

Best Regards

Moshiur Rahman Khan

(in reply to Jason Jones)
Post #: 3

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [ISA 2006 Firewall] >> Network Infrastructure >> Does NLB support different subnet at Extarnal or Internal NIC ? Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts