Solved

Request information on how to provide redundancy in outside internet access.

Posted on 2014-10-24
1
151 Views
Last Modified: 2015-01-07
Greetings,
I have been tasked to design a redundant connection point between my enterprise network and my internet provider.  
I have multiple buidlings.  Two of them have a direct fiber line from the provider to our buildings.  

The first one has an S4 router that is our single point of contact. In addition, it has the DHCP Server, and a SonicWall Firewall IDS.

The second has just the incoming cable with no connections.

What I want to do is build up the second wall for "Cluster" operations (can't find the right word).  If building one goes down, then building two can handle the load.  We are also considering a second Exchange server there.

I need a recommendation on how to handle  that second point.  I want to find a way to create the second "gateway", IDS, and domain controller.

The concern I have is what I don't know.  my fear is spanning tree issues due to multiple gateways. In addition, I fear competing services, as well as other things I don 't know.

How do I get started?
Thanks
0
Comment
Question by:Evan Cutler
1 Comment
 
LVL 6

Accepted Solution

by:
Wylie Bayes earned 500 total points
ID: 40403102
One thing you will need to implement to avoid problems with spanning tree is VRRP on the gateway addresses.  Basically two switches share the same gateway address.

As long as you setup VRRP for all your gateway addresses, the rest should fall into place pretty easily.  The IDS/DC I think would be fairly self explanatory based on your current experience.

Also having dual homed connections between the switches (or routers or whatever you are using) in-conjunction with Linkaggs (lacp) will not only provide redundancy but also increase throughput and performance when all links are up an operational.
0

Featured Post

Threat Intelligence Starter Resources

Integrating threat intelligence can be challenging, and not all companies are ready. These resources can help you build awareness and prepare for defense.

Join & Write a Comment

Microservice architecture adoption brings many advantages, but can add intricacy. Selecting the right orchestration tool is most important for business specific needs.
David Varnum recently wrote up his impressions of PRTG, based on a presentation by my colleague Christian at Tech Field Day at VMworld in Barcelona. Thanks David, for your detailed and honest evaluation!
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

705 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now