Sign in with
Sign up | Sign in
Your question
Solved

NLB with 2 NICS, Backend SQL Database

Last response: in Networking
Share
April 29, 2011 8:26:24 PM

Hello,

I have the following setup in mind:
https://sckgua.bay.livefilestore.com/y1pR539-bCAckJh0DW...

All Nodes running Windows 2008 r2. NLB Cluster and NICS are in Unicast Mode. Node1 and Node2 have 2 NICs, are both a part of VLAN#1 and VLAN#2. Want traffic to flow as follows:

Inbound: HTTP => NLB Cluster => Private NICs => DB Server
Outbound: DB Results => Private NIC => NLB Cluster => Client (HTTP)

For Default Gateway on NLB NICs: 192.168.1.1, Subnet Mask: 255.255.255.0
Prvate NICs: No DF, Subnet Mask: 255.255.255.0
DB Server: No DF, Subnet Mask: 255.255.255.0

VLAN 20 and VLAN 30 do not have internet access, only VLAN 10 with the NLB NICs.

Questions:
1. Should I add a DF to either the Private NICs or DB Server? If yes, should it be IP of VLAN? (192.168.2.1 or 192.168.3.1)

2. If I want traffic to flow as mentioned above, on which NICs do I have to add static routes to?

Best solution

May 2, 2011 6:08:24 AM

Ok stop, lets clear up a few things first. You are wanting to setup a frontend server cluster that access's a backend database? Why is the NLB in a different vlan then the client system, it looks like your needlessly complicating the setup. I'm going to assume your capable of assigning multiple VLAN's to each server.

If this is true then there are a few different methods.

Method 1,
Configure first VLAN 10 for frontend / client connections

Client VLAN 10
192.168.1.x / 24

Server Node 1
VLAN 10 => 192.168.1.x/24
VLAN 20 => 192.168.2.x/24

Server Node 2
VLAN 10 => 192.168.1.x/24
VLAN 20 => 192.168.2.x/24

Now configure a second VLAN 20

DB Server
VLAN 20 => 192.168.2.x/24

Client access's front end servers on VLAN 10. It is up to the servers to access the DB across the back end network VLAN 20. The client shouldn't be able to directly reach anything on the backend network.
Share
May 2, 2011 5:17:53 PM

Hi palladin9479,

Thats a fault on my part...used some faulty wording. That client computer before the router is supposed to be "HTTP requests" accessing my website. I will change the pic also and clear this up.

The setup you mentioned works for me. I tested it and was able to get the results I wanted. Thanks again for the helpful advise.

m
0
l
May 2, 2011 5:18:04 PM

Best answer selected by invulnarable27.
m
0
l
!