Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 166
  • Last Modified:

Request information on how to provide redundancy in outside internet access.

Greetings,
I have been tasked to design a redundant connection point between my enterprise network and my internet provider.  
I have multiple buidlings.  Two of them have a direct fiber line from the provider to our buildings.  

The first one has an S4 router that is our single point of contact. In addition, it has the DHCP Server, and a SonicWall Firewall IDS.

The second has just the incoming cable with no connections.

What I want to do is build up the second wall for "Cluster" operations (can't find the right word).  If building one goes down, then building two can handle the load.  We are also considering a second Exchange server there.

I need a recommendation on how to handle  that second point.  I want to find a way to create the second "gateway", IDS, and domain controller.

The concern I have is what I don't know.  my fear is spanning tree issues due to multiple gateways. In addition, I fear competing services, as well as other things I don 't know.

How do I get started?
Thanks
0
Evan Cutler
Asked:
Evan Cutler
1 Solution
 
Wylie BayesCommented:
One thing you will need to implement to avoid problems with spanning tree is VRRP on the gateway addresses.  Basically two switches share the same gateway address.

As long as you setup VRRP for all your gateway addresses, the rest should fall into place pretty easily.  The IDS/DC I think would be fairly self explanatory based on your current experience.

Also having dual homed connections between the switches (or routers or whatever you are using) in-conjunction with Linkaggs (lacp) will not only provide redundancy but also increase throughput and performance when all links are up an operational.
0

Featured Post

Prepare for an Exciting Career in Cybersecurity

Help prevent cyber-threats and provide solutions to safeguard our global digital economy. Earn your MS in Cybersecurity. WGU’s MSCSIA degree program curriculum features two internationally recognized certifications from the EC-Council at no additional time or cost.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now