Solved

Request information on how to provide redundancy in outside internet access.

Posted on 2014-10-24
1
158 Views
Last Modified: 2015-01-07
Greetings,
I have been tasked to design a redundant connection point between my enterprise network and my internet provider.  
I have multiple buidlings.  Two of them have a direct fiber line from the provider to our buildings.  

The first one has an S4 router that is our single point of contact. In addition, it has the DHCP Server, and a SonicWall Firewall IDS.

The second has just the incoming cable with no connections.

What I want to do is build up the second wall for "Cluster" operations (can't find the right word).  If building one goes down, then building two can handle the load.  We are also considering a second Exchange server there.

I need a recommendation on how to handle  that second point.  I want to find a way to create the second "gateway", IDS, and domain controller.

The concern I have is what I don't know.  my fear is spanning tree issues due to multiple gateways. In addition, I fear competing services, as well as other things I don 't know.

How do I get started?
Thanks
0
Comment
Question by:Evan Cutler
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 6

Accepted Solution

by:
Wylie Bayes earned 500 total points
ID: 40403102
One thing you will need to implement to avoid problems with spanning tree is VRRP on the gateway addresses.  Basically two switches share the same gateway address.

As long as you setup VRRP for all your gateway addresses, the rest should fall into place pretty easily.  The IDS/DC I think would be fairly self explanatory based on your current experience.

Also having dual homed connections between the switches (or routers or whatever you are using) in-conjunction with Linkaggs (lacp) will not only provide redundancy but also increase throughput and performance when all links are up an operational.
0

Featured Post

Manage your data center from practically anywhere

The KN8164V features HD resolution of 1920 x 1200, FIPS 140-2 with level 1 security standards and virtual media transmissions at twice the speed. Built for reliability, the KN series provides local console and remote over IP access, ensuring 24/7 availability to all servers.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Security is one of the biggest concerns when moving and migrating your data from your on-premise location to the Public Cloud.  Where is your data? Who can access it? Will it be safe from accidental deletion?  All of these questions and more are imp…
Is your computer hacked? learn how to detect and delete malware in your PC
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…

710 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question