Specifications
LSNAT Configuration Example
September 8, 2010 Page 16 of 28
LSNAT Configuration Example
ThissectionprovidesanenterpriseLSNATconfigurationexamplethatincludesfiveserverfarms.
Theseserverfarmscanbelogicallythoughtofaseitherproduct‐basedorenterpriseinternalserver
farms.Theproduct‐basedserverfarmsare accessibletothegeneralpublic.Theenterpriseinternal
serverfarmsareaccessibleonlytoenterprise
employees.ThemyproductHTTPandFTPserver
farmsprovidetheproduct‐basedservices.ThemyinternalHTTP,FTP,and SMTPserverfarms
provideenterpriseinternalservices.
Product-Based and Enterprise Internal Domains
TheHTTPandFTPdomainsprovidingpublicaccesstotheproduct‐basedserverfarmsare:
• www.myproduct.com
•ftp.myproduct.com
TheHTTP,FTP,andSMTPdomainsprovidingemployeeaccesstotheenterpriseinternalserver
farmsare:
• www.myinternal.com
• ftp.myinternal.com
•smtp.myinternal.com
Server Farms
Forboththepublicproduct‐basedandenterpriseinternalserverfarms,theenterpriseITclients
willhavedirectaccesstotheserverswithoutanyaddresstranslationrequired.Allotherclients
thathaveaccessrightstotheseserverfarmswillbeaddresstranslated.
Product-Based HTTP Server Farm
Theproduct‐basedHTTPserverfarm,realserverandvirtualserverconfigurationwill:
•HandleHTTPrequestsfromthegeneralpublicusingthewww.myproduct.comdomain.
•LoadbalanceHTTPservicesacrossthethreerealserversassociatedwith
www.myproduct.com,usingtheweightedroundrobinselectionprocesswith a ratioof3:2:2.
Theweightedround
robinselectionprocesstakesintoaccounttheresourcedifferences
betweenthethreeservers.
•UseApplicationContentVerificationTCPfailuredetection.
•UsetheVIP194.56.12.2port80.
Product-Based FTP Server Farm
Theproduct‐basedFTPserverfarm,realserverandvirtualserverconfigurationwill:
•HandleFTPrequestsfromthegeneralpublicusingtheftp.myproduct.comdomain.
•LoadbalanceFTPservicesusingtheleastconnectionspredictoracrosstworealservers.
•UsebothpingandTCPapplicationfailuredetection.
•UsetheVIP194.56.12.2port21.