Global Server Load Balancing – FortiBalancer

Leave a reply

14.3.4 Configuration Example for SDNS DPS

We should configure a DPS master and a DPS slave, and enable DPS detectors for sites.

Note: SDNS DPS master generates SDNS DPS type 1 packets, sends them to SDNS DPS Detector and receives SDNS DNS packet type 2 from SDNS DPS Detector. SDNS DPS slave receives SDNS DPS type 2 packets from SDNS DPS Detector.

FortiBalancer1 (DPS master)

  • Step 1 Basic SDNS configuration

FortiBalancer(config)#sdns on Check

FortiBalancer(config)#sdns interval heartbeat 2

FortiBalancer(config)#sdns site location beijing 0

FortiBalancer(config)#sdns site location shanghai 0

FortiBalancer(config)#sdns interval report 30

  • Step 2 SDNS DPS master configuration

FortiBalancer(config)#sdns dps interval send 15

FortiBalancer(config)#sdns dps interval query 15

FortiBalancer(config)#sdns dps history 9000

FortiBalancer(config)#sdns dps method hops

FortiBalancer(config)#sdns dps detector beijing 10.3.17.19 44544 15

FortiBalancer(config)#sdns dps detector shanghai 172.16.63.204 44544 15

FortiBalancer(config)#sdns dps member 10.3.17.100

FortiBalancer(config)#sdns dps member 10.3.17.20

FortiBalancer(config)#sdns dps on

FortiBalancer(config)#sdns dps master on 55456 FortiBalancer(config)#sdns statistics on localdns

FortiBalancer2 (DPS slave)

  • Step 1 Basic SDNS configuration

FortiBalancer(config)#sdns on Check FortiBalancer(config)#sdns interval heartbeat 2

FortiBalancer(config)#sdns site location beijing 0

FortiBalancer(config)#sdns site location shanghai 0

FortiBalancer(config)#sdns interval report 30

  • Step 2 SDNS DPS slave configuration

FortiBalancer(config)#sdns dps interval send 15

FortiBalancer(config)#sdns dps interval query 15

FortiBalancer(config)#sdns dps history 9000

FortiBalancer(config)#sdns dps method rtt

FortiBalancer(config)#sdns dps detector beijing 10.3.17.19 44544 15

FortiBalancer(config)#sdns dps detector shanghai 172.16.63.204 44544 15

FortiBalancer(config)#sdns dps on

FortiBalancer(config)#sdns dps master off

Enabling DPS Detectors for Sites

Assume that the “beijing” site (10.3.17.19) uses the FortiBalancer appliance as its DPS detector and the “shanghai” site uses the proxDetector installed on a server that runs the Linux operating system as its DPS detector. The following configuration example describes how to enables the DPS detectors for the “beijing” and “shanghai” sites.

  • Step 1 Enable the DPS detector for the “beijing” site by executing the following commands:

FortiBalancer(config)#sdns on

FortiBalancer(config)#sdns dps localdetector “det_bj” 0.0.0.0 “all” 53455 44544 30

  • Step 2 Enable the DPS detector for the “shanghai” site by executing the following command on the Linux server as a root user:

./proxDetector -a 0.0.0.0 -p 53455 -P 44544 -t 30

 


Having trouble configuring your Fortinet hardware or have some questions you need answered? Check Out The Fortinet Guru Youtube Channel! Want someone else to deal with it for you? Get some consulting from Fortinet GURU!

Pages: 1 2 3 4 5 6 7

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.