Solved

Website and RDP Fault tolerance using multiple ISP's

Posted on 2015-02-24
9
136 Views
Last Modified: 2015-02-26
We have two ISP's coming in to our network. We have a few internal websites and a couple RDP servers that users access from the outside.

We have been having some issue with one of the ISP's and it happens to be the one that we have most of the external DNS names for the websites and RDP servers pointed to.

My question is, what are others doing for fault tolerance for external services? do they have multiple entries in DNs using an external provider or something else?
0
Comment
Question by:msidnam
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 4
9 Comments
 
LVL 62

Expert Comment

by:gheist
ID: 40631227
I think you misuse term "Fault tolerance".
Short wikipedia read will tell you. Do you have $XY00000 budget already assigned for fault tolerance?
0
 
LVL 2

Author Comment

by:msidnam
ID: 40631262
Ok, load balancing then. Either way we need a way where we can easily have a domain name, lets say login.company.com that points to 123.45.6.7 be re routed to 123.45.6.8 if the ISP that has 123.45.6.7 goes down.
0
 
LVL 62

Expert Comment

by:gheist
ID: 40631285
If you put same webserver on 2 providers and set DNS to resolve to both IPs then one goes down and all browsers fail over to good side.
It will take more consideration to build database cluster and session synchronisation, keeping in mind lengthy isolation between locations.

For RDP? In 30s it will reconnect to same IP, 30s later to next IP. If you rig a windows server with 2 IPs within minute of one failure your users will be back at their sessions.
0
Building an interactive eFuture classroom

Watch and learn how ATEN provided a total control system solution including seamless switching matrix switch, HDBaseT extenders, PDU, lighting control to build an interactive eFuture classroom.

 
LVL 2

Author Comment

by:msidnam
ID: 40631310
Here is the situation. We have an MPLS line that connects all of our offices internally. We also have internet through our MPLS lines. We also have a Data Center that gives us an internet line where we have a physical firewall. Most of our RDP and webmail logins go through the MPLS internet. We have had issues in the past where our internet from our MPLS provider goes down (the inter office MPLs lines are still up and running).

When that happens we want to have the ability to somehow redirect the traffic from the MPLS internet to the data center internet. If we give our DNS provider two different public IP's it wont work because the Data Center internet is on a different subnet and I would need to change the gateway for those servers. I can do that in a downed situation but not if its going to one public IP one second and then the second public IP the next second.

Internally, i just tell my routers to send all traffic to the firewall in our DC and that will fix internal internet but not external users or clients trying to access servers.
0
 
LVL 62

Accepted Solution

by:
gheist earned 500 total points
ID: 40631335
What you describe is a job for BGP and ASNs... You can have DNS load balancing/failover without huge network overhaul
0
 
LVL 2

Author Comment

by:msidnam
ID: 40631465
ASN sounds like something I've heard before but I am not sure what it is.

As for BGP, i would guess that we would have a DNS entry for a site (login.mycompany.com) with two public IP's and then let the routers handle where it goes?
0
 
LVL 62

Expert Comment

by:gheist
ID: 40631643
It is lower level infrastructure that all your providers know paths to your  AS network.
At no extra expense you an build infrastructure for servers behind DNS "load balancing"
0
 
LVL 2

Author Closing Comment

by:msidnam
ID: 40633931
I found this as well per your suggestion of BGP and ASN

http://www.techrepublic.com/article/how-to-use-bgp-to-achieve-internet-redundancy/
0
 
LVL 62

Expert Comment

by:gheist
ID: 40634282
As you see that is not free...
Say until setting next years budget do your best to not rise it.
0

Featured Post

Flexible connectivity for any environment

The KE6900 series can extend and deploy computers with high definition displays across multiple stations in a variety of applications that suit any environment. Expand computer use to stations across multiple rooms with dynamic access.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

PRTG Network Monitor lets you monitor your bandwidth usage, so you know who is using up your bandwidth, and what they're using it for.
This article is a collection of issues that people face from time to time and possible solutions to those issues. I hope you enjoy reading it.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Internet Business Fax to Email Made Easy - With  eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, f…

751 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question