Redundant internet Connections for Servers
-
Hey guys, I have cable internet with 29 static ips. I have frontier intenrnet that I want use if my main internet goes down. I am trying to figure out how I can hook this up to my current setup with switches and routers and servers.
I have a scale cluster and an ovirt cluster. I have 3 switches, On for my scale clusters, one from my internal network for the business and one for my public address.
Any thoughts Networking is not my strong suit at all.
-
Redundancy for services you host, or redundancy for your Internet access?
-
Assuming it's for servers you host, you are basically looking at routing at the level of a hosting company or an ISP.
Unless you own the IPs, meaning you have received them from IANA, you can't. If you own the IPs it involves setting up BGP routing and you need failover routers or it's all meaningless. That's about all I know because that level of networking is way over my head.
That's why colocation was invented. Put your servers in a datacenter and let the datacenter handle the redundant internet. And redundant power and redundant cooling and physical security.
-
Yes its for my servers I am hosting. I have two internets. I just want to have it where is cable internet goes out, Frontier works and the servers are not down. As far as a Colo, I here ya, that is not in my plan anytime soon.
-
If I've understood well the question are we talking about a high availability DNS service like the one offered by cloudflare or aws?
-
@mroth911 said in Redundant internet Connections for Servers:
Hey guys, I have cable internet with 29 static ips. I have frontier intenrnet that I want use if my main internet goes down. I am trying to figure out how I can hook this up to my current setup with switches and routers and servers.
I have a scale cluster and an ovirt cluster. I have 3 switches, On for my scale clusters, one from my internal network for the business and one for my public address.
Any thoughts Networking is not my strong suit at all.
Wont commerical firewall gives you this feature, you can pick up a cheap Fortigate device for 300$ and get Software-defined WAN, this way you can plug 2 ISPs on the firewall and if one goes down the other will pick up. You can do this with VM firewalls however it is too complex for me and will tie your firewall with your Virtualization platform.
-
@Emad-R said in Redundant internet Connections for Servers:
@mroth911 said in Redundant internet Connections for Servers:
Hey guys, I have cable internet with 29 static ips. I have frontier intenrnet that I want use if my main internet goes down. I am trying to figure out how I can hook this up to my current setup with switches and routers and servers.
I have a scale cluster and an ovirt cluster. I have 3 switches, On for my scale clusters, one from my internal network for the business and one for my public address.
Any thoughts Networking is not my strong suit at all.
Wont commerical firewall gives you this feature, you can pick up a cheap Fortigate device for 300$ and get Software-defined WAN, this way you can plug 2 ISPs on the firewall and if one goes down the other will pick up. You can do this with VM firewalls however it is too complex for me and will tie your firewall with your Virtualization platform.
That’s not how things work. SD-WAN is not magic
-
Dead simple to do for your outgoing traffic, but as others have indicated, your problem is going to be to get external services to fail over to the other incoming link.
Really quickly, something kinda hacky that could work is your domain name on a dynamic service with the updater client installed directly on the server(s) in question. Have a short refresh interval, so that whenever the outgoing connection flips, the updater client sees reports the new IP address and traffic will eventually be pointed to the backup line.
Definitely not something that I'd want to put into a critical setup, but it could work for non-essential services.
-
@mroth911 you need to have the ISP providers work together and setup this failover for you. This isn't something you'll be able to do within your budget or capabilities to ensure works.
Get Frontier and whoever your main providers are on the phone. Your ISPs can certainly do this, but you as a lessee of the IP addresses cannot, not nearly as reliably anyways.
And if this goes towards your goal of running everything yourself and setting up a true HA environment with literally 0 downtime then you absolutely cannot consider doing this yourself.
-
If you have a primary/failover type set up take a look at Peplink Balance products. They can do outside IP address translations and forwarding such that packets coming in on say 66.0.0.1 (Carrier A) can be sent to ip 12.0.0.1 (Carrier B) with in the device. They are expensive; but worth it. We used to use a Peplink Balance 580 here to both load balance between a (then ) Level 3 (Primary) and Time Warner (secondary) circuit but also to fail over; traffic would be re-directed via DNS (ether SRV secondary records or "round robin") to the secondary provider and the Balance 580 would essential NAT the address to the primary carrier's IP (on our equipment).
https://www.peplink.com/company/peplink-enterprise-features/
