Solved

Redirect IP traffic to 2nd datacenter

Posted on 2012-04-07
4
815 Views
Last Modified: 2012-06-27
Hi,
I have servers and public IP addresses in 2 distant datacenters, with 100 Mbps fiber optic connectivity between them:

- DataCenter 1 with 32 public IP addresses, ISP controls the IP segment
   Web Servers are here
   Vyatta router here, static routing

- DataCenter 2 with 254 public IP addresses, BGP, my own routing segment
   No web servers here, only routers, VPN...etc
   Mikrotik RouterOS here, BGP+Static routing

Well, what I would like to do is to setup a dozen of WEB sites in DC1, but bind them to public IP addresses from DC2. Mainly for SEO optimization.
The method and performance is not important - important is only the principle, that these web sites must resolve to DC2's IP address and load themselves from DC1, where actual web server is located.

Any idea?
0
Comment
Question by:Andrej Pirman
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 37

Accepted Solution

by:
meverest earned 500 total points
ID: 37819089
easiest way to do that is to just bridge the lan segments at each datacenter.  You can do this with eoip tunnel with MikroTik, or L2TP with most others.

Requests will still enter via the DC2 site, but those reply packets will be sent via the DC1 (so long as the interim networks don;t try to block it! ;-)
0
 
LVL 18

Author Comment

by:Andrej Pirman
ID: 37819237
Excellent!

Just some more info:
Do I need to setup some VPN tunnel between both sites first, and them create EoIP tunnel on top of this VPN?
...or can it be done without VPN tunnel as a base?

Regarding return packets:
wouldn't it be better to create some rule on remote site (DC1) to return packets coming from EoIP tunnel back to this tunnel when they are ponged back?

EDIT:
Hmmm...one more thing:
at DC1 I have Vyatta configured with NAT to local servers,
while at DC2 (with 254 IPs) I don't have NAT, but static routing instead.

any thoughts how this influence the EoIP config?
0
 
LVL 37

Expert Comment

by:meverest
ID: 37820330
Hi,

you can usually do it with, or without any initial tunnel but for security you may want to initiate ipsec first.  You could use encrypted pptp as alternative, but watch out for MTU sizes (pptp will consume some overheads that may cause trouble with packet sizes)

you can route return packets back to DC2 is you want to - it just double handles bandwidth between the two sites - if that is not important to you, then that will work just fine!

It doesn't matter if you use NAT or routing at either end.  Once the local nets are bridged, then they act as if your switches are connected together by a cable.

Cheers!
0
 
LVL 18

Author Closing Comment

by:Andrej Pirman
ID: 37821185
Thankyo! That was just what I wanted.
0

Featured Post

Why Off-Site Backups Are The Only Way To Go

You are probably backing up your data—but how and where? Ransomware is on the rise and there are variants that specifically target backups. Read on to discover why off-site is the way to go.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Getting hacked is no longer a matter or "if you get hacked" — the 2016 cyber threat landscape is now titled "when you get hacked." When it happens — will you be proactive, or reactive?
How to set-up an On Demand, IPSec, Site to SIte, VPN from a Draytek Vigor Router to a Cyberoam UTM Appliance. A concise guide to the settings required on both devices
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
In this brief tutorial Pawel from AdRem Software explains how you can quickly find out which services are running on your network, or what are the IP addresses of servers responsible for each service. Software used is freeware NetCrunch Tools (https…

688 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question