-
September 28th, 2004, 04:30 PM
#1
Multihomed IIS with two network cards
Recently, i have installed a system like this:
-Win2k, IIS, 2 network cards but just one card is configured to DMZ by behind a CISCO PIX (NATed to have a public IP address, this public ip is assigned by my ISP1 to my public domain name)
Everything was OK, but my ISP has failed 3 times this week.
Now, i need to install an alternate communication channel (ISP2) to support my site when my ISP1 is down.
Things that i'm thinking to do:
1-Get an alternate ISP to support my system when my ISP1 is down, connect an ISA Server (cheaper than my PIX) to support my second ISP.
Put my server into a DMZ to the second network card.
2-Get a domain name (www.example.com).
3-Get my own DNSs (ns1 and ns2) to support this domain.
4-Redirect my site to be supported by ns1 and ns2.
5-Add to my own DNS the public IP's, provided by ISP1 and ISP2.
The image is like this:
http://www.microsoft.com/technet/ima...isat12_BIG.gif
The difference is that i won't have an array of ISA in my alternate ISP.
Will it work?
Any suggestions.
-
September 29th, 2004, 10:29 AM
#2
Registered User
I've heard that this should work if you setup all your outgoing and incoming listeners correctly but I think you would be better off asking this question on ISAserver.org where you will run into many people that specialize in ISA Server. It might even be covered in one of the tutorials on the site.
I'd rather be riding my motorcycle
"I gotta have more cowbell, baby" Bruce Dickinson(Christopher Walken)
-
September 29th, 2004, 12:02 PM
#3
Registered User
That sounds like it would work but would make troubleshooting even more complicated should you run into problems in the future. I would suggest as an alternative getting a dependable ISP instead of the one you are using. Three times being down in one week is just not acceptable.
*edit* Just noticed you're in El Salvador...nevermind, you're probably stuck with that ISP?
-
September 29th, 2004, 12:59 PM
#4
Registered User
I forgot to add that they do make routers now that give you the option to hook up two seperate broadband connections to do the work for you. Instead of you doing the research and configuring the ISA server to do it.
I'd rather be riding my motorcycle
"I gotta have more cowbell, baby" Bruce Dickinson(Christopher Walken)
-
September 29th, 2004, 07:50 PM
#5
Registered User
Originally Posted by lvilleda
this public ip is assigned by my ISP1 to my public domain name)
Is your current ISP serving your DNS?
Originally Posted by lvilleda
Put my server into a DMZ to the second network card.
Make sure the server has at least a software firewall for protection.
Originally Posted by lvilleda
Is this a second domain name?
Originally Posted by lvilleda
3-Get my own DNSs (ns1 and ns2) to support this domain.
Hosted by an outside DNS Service ?
Give em a few more details and I will try to assist you with a cost effective solution.
It is a miracle that curiosity survives formal education. -- Albert Einstein
It said 'Insert disk #3', but only two will fit. -- The average customer.
"There is no need for any individual to have a computer in their home." – Ken Olson, President of Digital Equipment Corp., 1977 …….
[email protected]
-
September 29th, 2004, 08:50 PM
#6
I think!
My domain (www.example.com) is hosted by ns1 and ns2 from ISP1
But i think to do this:
First that all, i have to re-delegate the domain www.example.com to be hosted by ns1.mydomain.com and ns1.mydomain.com.
ns1.mydomain.com with ISP1 (Record A to public Ip provided from ISP1)
ns2.mydomain.com with ISP2 (Record A to public Ip provided from ISP2)
Both DNS will be in DMZ's, firewalled, of course.
When a ISP1 fail, DNS1 will fail and ISP2 will be up, and DNS2 will be resolving my site.
I think.
-
September 29th, 2004, 09:06 PM
#7
Registered User
This will work depending on the DNS Hosting Service. (With the problems that you are having with your link it woud futile to try to host dns yourself)
I know that your idea will work because I have used it my self in similar situations.
There will be inbound lag of course because some DNS servers cache IPs up to 72hours.
Many services offer fail-over suchas
http://www.website-backup.com/
http://www.tognet.org/result.php?Key...1&original=dns
Zoneedit.com
These services often offer Heartbeat monitoring, and Zone failover protection.
As for the internal side, you can router plan that you described. and some creative manipulation. Or seperate syncronized servers.
It is a miracle that curiosity survives formal education. -- Albert Einstein
It said 'Insert disk #3', but only two will fit. -- The average customer.
"There is no need for any individual to have a computer in their home." – Ken Olson, President of Digital Equipment Corp., 1977 …….
[email protected]
-
September 30th, 2004, 06:01 PM
#8
Have you tried this site?
www.isaserver.org
I have found answers there to most of my questions on ISA Server.
Similar Threads
-
By 70-240 in forum Certification
Replies: 14
Last Post: February 20th, 2012, 03:35 AM
-
By RedBeard in forum Networking
Replies: 12
Last Post: June 15th, 2004, 07:38 AM
-
By Spawn_X in forum Networking
Replies: 14
Last Post: January 14th, 2002, 11:55 AM
-
By GHSTECH in forum Tech-To-Tech
Replies: 0
Last Post: May 27th, 2001, 09:56 PM
-
By dragonhead in forum Windows NT/2000
Replies: 8
Last Post: November 8th, 2000, 12:44 PM
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|
Bookmarks