I am designing Primary and DR sites. Both site will be connected with internet provided by same Service Provider. Both sites switches will also connect with eachother through fiber optics.DMZ on both sides will have same sevices i.e. DNS, Web, SMTP Relay etc and other Applications that will be accessed from internet. Firewalls on both sites will be doing NAT for these serversand actual public IP addresses will be on firewalls. You can see physical topology in diagram attached.
Now i am confused on how everything will work.
What i am thinking is i will get one public ip address pool from service provider and configure one lan between routers and firewals of both sites as these all devices are connect with switches and switches are connect with each other.I will configure public ip addresses for services on both sites. Then i will run ebgp with service provider on both sites and ibgp and any igp in aforementioned lan. I will advertise this public ip pool to service provider from both sites and will advertise this network with high priority from Primary site.
Now first tell me is it right approach for my scenario. Internal users will also access these services But currently i am focused on external part. If this is right approach then here i am confuse,for example, for web servers on both sites i will have to different ip address. Now i configure in DNS server two ip address for same website. if any user access website from internet, he will get only one ip address against url from his dns. As per my understanding if that server is down still user will keep sending request on same ip address as this ip is saved in its cache. so how to resolve this issue.
Hi everyone, I would like to thank you in advance for any help you can provide a newcomer like myself!
Im studying the 100-105 book by Odom and am currently on the topic of Port security. I purchased a used 2960 and I'm trying to follow a...
While deploying a number of 18xx/2802/3802 model access points (APs), which run AP-COS as their operating platform. It can be observed on some occasions that while many of their access points were able to join the fabric WLC withou...
I am going to design and build an LAN network under a tunnel underground with long distance between the switches.
I will have 2 Catalyst switches and 8 Industrial IE3000, and they will be connected with fiber.
For now I am planning on use Layer-2 s...