Avaya manual Load Balancing in the P333R-LB, Firewall Load Balancing, Benefits, How It Works

Page 143

Chapter 14

Load Balancing in the P333R-LB

This chapter provides information on Load Balancing in the Avaya P333R-LB. Both Firewall Load Balancing and Server Load Balancing are treated in detail.

Firewall Load Balancing

This section provides information on Firewall Load Balancing (FWLB) in general, as well as on specific types of firewalls supported by the P333R-LB, and configuration examples.

FWLB intercepts all traffic between protected and unprotected zones, and dynamically distributes the load among the available firewalls, based on the FWLB configuration.

In terms of P333R-LB configuration, firewalls are referred to as Real Servers, the group of firewalls is a Real Server Group, and the firewall group is associated with a Virtual Firewall Service, which is a routing or bridging firewall.

Benefits

FWLB allows multiple firewalls to operate in parallel, giving you the ability to:

Scale firewall performance.

Eliminate the firewall as the single point of failure.

How It Works

The P333R-LB:

Balances traffic across two or more firewalls (up to1024) in your network, allowing your firewalls to work in parallel.

Maintains state information about the traffic flowing through it and ensures that all traffic between specific IP source and destination pairs flows through the same firewall.

Performs health checks on all paths through the firewalls. If a path is malfunctioning, P333R-LB diverts traffic away from that path, maintaining connectivity across the firewalls.

Often, a pair of P333R-LBs are needed to support FWLB. One device is deployed on the LAN side (internal) of the firewalls and another on the WAN side (external). Another P333R-LB is required to balance a Demilitarized Zone (DMZ) on the DMZ side of the network, if it exists, to allow remote access. Additional P333R-LBs can be added to provide redundancy, eliminating any P333R-LB or path as the single point

Avaya P333R-LB User’s Guide

1

Image 143
Contents Avaya P333R-LB Page Table of Contents Section Installing the P330 Section Configuration of the P330 LAG Bootp Vrrp Avaya User’s Guide Vii Section Troubleshooting and Maintaining the P330 CLI Conventions Before you Install the P333R-LBSafety Information FCC Notice Conventions Used in the DocumentationAvaya P333R-LB User’s Guide Avaya P333R-LB Page Introduction Avaya P330 Family FeaturesAvaya P333R-LB Overview Avaya P330 Device Manager Embedded Web Avaya P330 Command Line Interface CLIAvaya Multi-Service Network Manager Msnm Avaya P330 Network ManagementSmon Fans, Power Supply and Bups MonitoringAvaya P333R-LB Overview Avaya P333R-LB User’s Guide Ietf Layer Standards and CompatibilityAvaya P330 Standards Supported Ietf Network Monitoring Avaya P333R-LB Switch SpecificationsAgency Approvals SafetySafety AC Version Safety DC VersionBasic Mtbf Stacking ModuleExpansion Modules InterfacesLaser Data Laser ClassificationUsage Restriction Ethernet/Fast Ethernet Expansion Module Fast Ethernet Fiber Expansion ModuleGbic Expansion Module Safety InformationAvaya Approved Gbic Transceivers SpecificationsATM Expansion Modules Agency ApprovalX330GT2 Gigabit Ethernet Expansion Module WAN Expansion Modules Multi-Mode Module LED WarningChapter Installing the P330 Page Site Preparation InstallationRequired Tools Power Requirements DC Avaya P330 Rack Mounting Rack Mounting OptionalConnecting Stacking Sub-modules Stacking Switches OptionalInstalling the X330STK Stacking Sub-module in the P330 Incorrect Stack Connection Avaya P330 Stack Connections Installing the Expansion Sub-module into the Avaya P330 Installing Expansion Sub-modulesPort Types Making Connections to Network EquipmentPrerequisites 1000BASE-SX Chapter Installation Avaya P333R-LB User’s Guide Powering On Avaya P330 Module DC Powering Up the Avaya P330Powering On Avaya P330 Module AC Post-Installation Avaya P333R-LB Front Panel Avaya P333R-LB Front and Back PanelsPWR OFF Bups Input Connector Sticker Bups Input ConnectorEstablishing a Serial Connection Configuring the Terminal Serial Port ParametersConnecting a Terminal to the Avaya P330 Serial port Assigning P330’s IP Stack Address P330 SessionsFor example telnet Establishing a Telnet ConnectionOverview Connecting a Modem to the Console PortEstablishing a Modem PPP Connection with the P330 Security Levels CLI ArchitectureDefining new local users Entering the Supervisor LevelIntroduction to Radius Exiting the Supervisor LevelEntering the CLI User Authentication Radius Commands Illustrates the Radius authentication procedureUser Authentication Allowed Managers Allowed Manager CLI CommandsUser Authentication Avaya P333R-LB User’s Guide Configuration of the P330 Page Basic Switch Configuration Operating parameters System Parameter ConfigurationIdentifying the system UTC Network Time Acquiring Protocols Parameter ConfigurationBasic Switch Configuration Avaya P333R-LB User’s Guide Avaya P330 Default Settings Default Settings of the P330Configuring the Switch 10/100Base-TX ports 100Base-F ports Base-X ports Chapter Default Settings of the P330 Default Settings of the P330 Avaya P333R-LB User’s Guide Ethernet Avaya P330 Layer 2 FeaturesOverview Configuring Ethernet Parameters MAC Address Flow ControlPriority CAM Table Ethernet Configuration CLI CommandsEthernet Implementation in the Avaya P333R-LB Vlan Overview Vlan ConfigurationMulti Vlan Binding Vlan TaggingIngress Vlan Security Vlan CLI CommandsVlan CLI Commands Vlan Implementation in the Avaya P333R-LB Pbnac Implementation in the P330 Family Port Based Network Access Control PbnacHow Port Based Authentication Works Pbnac CLI Commands Configuring the P330 for PbnacChapter Avaya P330 Layer 2 Features Avaya P330 Layer 2 Features Spanning Tree per Port Spanning Tree ProtocolSpanning Tree Protocol Port Roles Rapid Spanning Tree Protocol RstpAbout the 802.1w Standard Spanning Tree Implementation in the P330 Family Spanning Tree Protocol CLI Commandss Spanning Tree Protocol CLI CommandsChapter Avaya P330 Layer 2 Features MAC Security Implementation in P330 MAC Security CLI CommandsMAC Security Avaya P330 Layer 2 Features LAG Overview LAG CLI CommandsLAG Implementation in the Avaya P330 Family of Products Port Redundancy Operation Port RedundancyIntermodule Port Redundancy Port Redundancy CLI CommandsAvaya P330 Layer 2 Features IP Multicast Filtering IP Multicast Implementation in the Avaya P333R-LB IP Multicast CLI CommandsImplementation of Stack Health in the P330 Family Stack Health CLI CommandsStack Health Port Classification Port Classification CLI CommandsStack Redundancy Avaya P330 Layer 2 Features Avaya P333R-LB User’s Guide What is Routing? Avaya P330 Layer 3 FeaturesRouting Multinetting Multiple Subnets per Vlan Routing ConfigurationForwarding IP Configuration CLI Commands IP ConfigurationAssigning Initial Router Parameters Routerconfigure# interface interface-name RIP Overview RIP Routing Interchange Protocol ConfigurationRIP2 RIP CLI CommandsAvaya P330 Layer 3 Features Ospf Overview Ospf Open Shortest Path First ConfigurationOspf CLI Commands Static Routing Overview Static Routing ConfigurationStatic Routing Configuration CLI Commands RIP Route PreferencesRoute Redistribution Route Redistribution CommandsARP Overview ARP Address Resolution Protocol Table ConfigurationARP Table ARP CLI CommandsDHCP/BOOTP Relay BOOTP/DHCP OverviewBOOTP/DHCP CLI Commands NetBIOS Re-broadcast Configuration CLI Commands NetBIOS Re-broadcast ConfigurationNetBIOS Overview Policy Configuration Overview Policy ConfigurationPolicy and Load Balancing Default List BehaviorPolicy Configuration CLI Commands Enforcement110 Avaya P333R-LB User’s Guide Avaya P330 Policy Policy Configuration ExampleIP Fragmentation/Reassembly CLI Commands IP Fragmentation and ReassemblyIP Fragmentation and Reassembly Overview Layer 3 Configuration File Avaya P330 Layer 3 Features 114 Avaya P333R-LB User’s Guide Vrrp Layer 3 RedundancyVrrp Commands Vrrp CommandsAvaya P333R-LB User’s Guide 117 WAN Configuration ExampleChapter Layer 3 Redundancy 120 Avaya P333R-LB User’s Guide Srrp Srrp CommandsAdditional Redundancy Schemes Real Server Group BackupRSG Backup Configuration Example Avaya P333R-LB User’s Guide 123 124 Avaya P333R-LB User’s Guide Real Server Backup Configuration Example Real Server Backup126 Avaya P333R-LB User’s Guide Avaya P333R-LB User’s Guide 127 Layer 3 Redundancy 128 Avaya P333R-LB User’s Guide How It Works Load Balancing in the P333R-LBFirewall Load Balancing BenefitsImplementation Transparent Routing Firewall Load BalancingLAN Configuring Firewall Load Balancing in the P333R-LBLoad Balancing in the P333R-LB Load Balancing in the P333R-LB Load Balancing in the P333R-LB Load Balancing in the P333R-LB Load Balancing in the P333R-LB Firewall Demilitarized Zone DMZ Configuration ExampleLoad Balancing in the P333R-LB Chapter Load Balancing in the P333R-LB Load Balancing in the P333R-LB Hash Load Balancing Metrics for Transparent Routing FwlbMinMiss Hash Hash Metric Loss of PersistencyHealth Check Weighted FirewallsSelecting a Load Balancing Metric Implementation PersistencyNon-Transparent Routing Firewall Load Balancing Internet NAT Configuration ExampleStatic NAT Configuration Example Load Balancing Metrics for Non-Transparent Routing Fwlb Non-Transparent Routing Fwlb Sample Static NAT ConfigurationBridging Firewall Load Balancing Following figure illustrates Bridging Fwlb Configuration ExampleLoad Balancing in the P333R-LB Load Balancing in the P333R-LB Load Balancing Metrics for Bridging Fwlb Firewall Load Balancing Management Security Half NAT Load Balancing Server Load BalancingBenefits Load Balancing in the P333R-LB Half NAT Based Configuration Configuring Server Load Balancing in the P333R-LBP333R-LB-1config-if2#ip address 10.1.1.10 255.255.255.0 Done Full NAT Load Balancing 10.1.1.3Load Balancing in the P333R-LB 255.255.255.0 Full NAT Based ConfigurationDone P333R-LB-1super-ifclient#exit Direct Server Return DSR Triangulation Redirection Low10 illustrates an SLB Triangulation configuration DSR Triangulation Configuration ExampleLoad Balancing in the P333R-LB Load Balancing Metrics DNS ConfigurationCombining Two Cache Applications on the Same Real Caches Round Robin 12 Hash Metric Loss of Persistency Health Check Weighted Real ServersClient Persistency Port Re-mapping Selecting a Load Balancing Metric and Persistency OptionLoad Balancing in the P333R-LB Application Redirection Load Balancing in the P333R-LB Application Redirection Configuration ExamplesP333R-LB-1configure#ip default-gateway Load Balancing in the P333R-LB 15 Two Cache Applications on the Same Real Caches Combining Two Cache Applications on the Same Real CachesLoad Balancing in the P333R-LB Load Balancing in the P333R-LB Load Balancing Metrics 16 Hash Metric Loss of Persistency Weighted Real Servers Load Balancing in the P333R-LB Client Persistency Policy-Based Routing Source-Based Routing Load Balancing in the P333R-LB Avaya P333R-LB User’s Guide System Requirements Embedded Web ManagerEmbedded Web Manager/Browser Compatability Running the Embedded Web ManagerWelcome Web-based Manager Install from your Local Web Site Installing the Java Plug-inInstall from the Avaya Site Embedded Web Manager P330 Page Troubleshooting the Installation Troubleshooting the InstallationTroubleshooting the Installation Replacing an Existing Expansion Sub-module MaintenanceAdding/Replacing an Expansion Sub-module Adding an Expansion Sub-module to Avaya P330Replacing the Stacking Sub-module Saving Configuration DefinitionsWithout Saving Configuration Definitions Obtain Software Online Downloading Software Updating the SoftwareSoftware Download Download New Version without Overwriting Existing Version United States How to Contact UsAP Asia Pacific Region Cala Caribbean and Latin America Region Avaya P333R-LB User’s Guide
Related manuals
Manual 10 pages 7.24 Kb

P333R-LB specifications

The Avaya P333R-LB is a robust and versatile switch that is part of Avaya's portfolio aimed at enterprise networking solutions. This switch is designed to enhance the performance and scalability of network infrastructure while ensuring high availability and reliability.

One of the main features of the P333R-LB is its Layer 3 switching capability, which allows for efficient routing within an organization's network. This capability is particularly beneficial for organizations with multiple VLANs, as it simplifies the routing process and ensures that data packets are transmitted in the most efficient manner possible.

The P333R-LB is equipped with advanced Quality of Service (QoS) features to prioritize traffic based on the type of application being used. This ensures that critical applications, such as VoIP and video conferencing, receive the necessary bandwidth and low latency required for optimal performance. Additionally, it supports both IPv4 and IPv6 protocols, making it adaptable to a variety of networking environments.

Another important feature of the Avaya P333R-LB is its stackable design. This allows multiple switches to be interconnected, creating a single logical unit. This stacking capability not only simplifies management but also increases overall network capacity and redundancy. In case of a hardware failure, the stack can continue operating without interruption, maintaining network integrity and service continuity.

The switch also integrates advanced security features, including support for MAC filtering, access control lists, and port security. These features help to safeguard network resources from unauthorized access and potential threats. Moreover, the P333R-LB supports 802.1X port-based authentication, which adds an additional layer of security during user access to the network.

The Avaya P333R-LB comes with multiple Gigabit Ethernet ports, allowing for high-speed connectivity to devices such as servers, workstations, and IP phones. This ensures that all devices on the network can communicate effectively, supporting the demands of modern enterprise environments.

For management and monitoring, the P333R-LB offers a user-friendly web interface along with SNMP support, enabling network administrators to easily configure settings and monitor network performance. This simplicity in management is crucial for IT teams that need to ensure optimal network performance while minimizing downtime.

In summary, the Avaya P333R-LB is a feature-rich, scalable, and reliable switch that meets the needs of demanding enterprise networks. With its advanced technologies, QoS support, stackable design, robust security features, and high-speed connectivity options, the P333R-LB is positioned to support a wide range of applications and enhance overall network performance.