Solved

Microsoft NLB Terminal Server Cluster Access Throught ISA Server 2006

Posted on 2009-07-14
12
355 Views
Last Modified: 2013-11-21
Hi

We have a microsoft NLB Terminal Server Cluster of 5 machines, we now want to introduce a firewall for these machines for protocol control. ISA will happily forward requests to one of the dedicated IP's of a member of the cluster fine but when you put the IP address of the cluster as the forward address it fails. Can anyone think of a solution ISA Server 2006.
0
Comment
Question by:cant-col
  • 6
  • 5
12 Comments
 
LVL 23

Expert Comment

by:rhandels
ID: 24856876
Hey,

ISA has a build in solution of creating an NLB clustering. Also, are you using Unicast or Multicast NLB clustering? This is just my opinion, but i'd always go for two NIC's inteher and set up your NLB clustering unicast..

You can take a look at the following article, go to the last part of it, this explains how to publish sites using NLB..
http://www.isaserver.org/tutorials/Configuring_Network_Load_Balancing.html
0
 

Author Comment

by:cant-col
ID: 24857126
Hi Thanks for the comment the Terminal Servers are built in a unicast cluster, we now want to publish their cluster shared IP in ISA as a rule so that the port can be forwared but when we do this no RDP connection is possible, if we forward to a Designated IP address of one of the cluster machines it works fine, the cluster must be accessible as it is designed for load balancing a large number of users.
0
 
LVL 23

Expert Comment

by:rhandels
ID: 24857154
Hey,

If you look at the article you'll see that ISA has it's own way of publishing multiple servers through 1 ip address. You should create a publishing  rule that has 1 external ip address link to the 5 internal ones, thus bypassing your "own" Microsoft NLB setup. Normally i'd say you should be possible to send that request to your NLB cluster, but it might be that ISA has an ARP table to causes this error to pop up..
0
 

Author Comment

by:cant-col
ID: 24857696
Oh right thanks ..... will investigate in too it ......... this must shorly mean each machine requires two NIC's
0
 
LVL 23

Expert Comment

by:rhandels
ID: 24857766
Let me know how it turns out and if you need some extra help or info..
0
Optimizing Cloud Backup for Low Bandwidth

With cloud storage prices going down a growing number of SMBs start to use it for backup storage. Unfortunately, business data volume rarely fits the average Internet speed. This article provides an overview of main Internet speed challenges and reveals backup best practices.

 

Author Comment

by:cant-col
ID: 24858037
You article is in relation to ISA 2000 and Windows 2000, i am running 2003 and ISA 2006 ? have you had any dealings with this ?
0
 
LVL 23

Expert Comment

by:rhandels
ID: 24858046
Yes i know it was a 2000 article, but the idea should be somehwat the same.. The only true difference between ISA 2006 and 200o is that they finally created a rule base :)

I'll check and see if i can find a 2006 article..
0
 

Author Comment

by:cant-col
ID: 24858122
I have just read through the article for the second time it disucsses publishing an ISA Server Cluster, i however want to publish a Terminal Server Cluster.
0
 
LVL 23

Expert Comment

by:rhandels
ID: 24858157
It looks like i was wrong with publishing Terminal Server NLB over ISA. I did found an article that publishes multiple websites using this technique. I thought that thsi was also possible with Publishing rules insetad off Webserver publishing rules..

Anyway.. Here is a link on how to publish that. It might be that 2006 also has some sort of option to do this to... Still, it want's you to add the single machines to it's rule, not only the NLB cluster address..

http://www.isaserver.org/tutorials/Explaining-ISA-Server-2006-Web-Server-load-balancing.html
0
 

Accepted Solution

by:
cant-col earned 0 total points
ID: 24867605
I installed the Service Pack one yesterday and it has magically started forwarding requests to the server how strange :) Thanks for help anyway
0
 
LVL 23

Expert Comment

by:rhandels
ID: 24868388
LOL... Mental note to self.. Start answering every question with "Did you upgrade the latest SP's??"

Glad to hear it is solved though...
0

Featured Post

U.S. Department of Agriculture and Acronis Access

With the new era of mobile computing, smartphones and tablets, wireless communications and cloud services, the USDA sought to take advantage of a mobilized workforce and the blurring lines between personal and corporate computing resources.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Welcome to my series of short tips on migrations. Whilst based on Microsoft migrations the same principles can be applied to any type of migration. My first tip is around source server preparation. No migration is an easy migration, there is a…
Learn about cloud computing and its benefits for small business owners.
In this video I am going to show you how to back up and restore Office 365 mailboxes using CodeTwo Backup for Office 365. Learn more about the tool used in this video here: http://www.codetwo.com/backup-for-office-365/ (http://www.codetwo.com/ba…
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…

920 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now