Solved

Microsoft NLB cluster through Cisco VPN tunnel

Posted on 2007-11-22
5
1,265 Views
Last Modified: 2011-09-20
We have 2 Win 2003 servers in a Unicast NLB Cluster.
Each server has it's own IP address and the cluster has it's own IP address.
We have established a Cisco VPN tunnel between and 877 and an 878 router using the SDM interface.

Remotely, we can access each server individually but not by the cluster IP address.
Remotely, we can ping each server but not the cluster IP address.
Locally, everything works fine, and the cluster IP address responds fine.
0
Comment
Question by:nmxsupport
5 Comments
 
LVL 6

Expert Comment

by:sabioit
ID: 20340589
Are you pointing the NAT in your firewall to the NLB IP ?
0
 
LVL 79

Expert Comment

by:lrmoore
ID: 20340964
Check the default gateway setting on the cluster IP config
0
 

Accepted Solution

by:
nmxsupport earned 0 total points
ID: 20518286
I am requesting closure on this question.
After speaking with Cisco there was 2 main issues.
1) the mtu packet size needed to reduced from 1500 on the routers - apparently RDP is affeced by this?I've not heard of this but this got IP working.
2) because RDP was already being natted on the external interface it was not being passed back through the vpn tunnel, we had to add an exception to the natting rules/vpn tunnel to get rdp to return back through the vpn tunnel if it started there.
0
 
LVL 1

Expert Comment

by:Vee_Mod
ID: 20532036
Closed, 500 points refunded.
Vee_Mod
Community Support Moderator
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In the hope of saving someone else's sanity... About a year ago we bought a Cisco 1921 router with two ADSL/VDSL EHWIC cards to load balance local network traffic over the two broadband lines we have, but we couldn't get the routing to work consi…
Getting hacked is no longer a matter or "if you get hacked" — the 2016 cyber threat landscape is now titled "when you get hacked." When it happens — will you be proactive, or reactive?
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…

778 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question