Can IPS 4345 work in High Availability mode?

Similar Messages

• 2xC350 in High Availability Mode (Cluster Mode)

  Hello all,
  first of all, i`m a newbie in ironport. So Sorry for my basic questions, but i can`t find anything in the manuals.
  I want to configure the two boxes in High Availability Mode (Cluster Mode) but i don`t understand the ironport cluster architecture.
  1) in machine mode i can configure IP-Adresses -> OK
  2) in Clustermode i can configure listeners and bind them to a IP-Address -> OK
  But how works the HA?
  A) Should i configure on both boxes the same IP to use one MX Record? And if one box is down the other takes over?
  B) Or should i configure different IPs and configure two MX Records?
  And if one box is down the second MX will be used.
  Thanks in advance
  Michael

  The ironport clustering is for policy distribution only - not for smtp load mgmt.
  A) Should i configure on both boxes the same IP to use one MX Record? And if one box is down the other takes over?
  Could do - using NAT'ing on the f/w but few large business take this approach today.
  Many/most large businesses use a HW loadbalancer like an F5, Foundry ServerIron, etc. The appliances themselves would be set up on seperate IP addresses. Depending on the implementation requirements, the internal IP address could be a public IP or a private IP.
  B) Or should i configure different IPs and configure two MX Records?
  And if one box is down the second MX will be used.
  If you set up two boxes, even with a different MX preference, mail will be delivered to both MX records. There are broken SMTP implementations that get the priority backwards, and many spammers will intentionally attempt to exploit less-restrictive accept rules on secondary MX recievers and will send to them first.

• Configuring two 11g OID servers in High Availability mode.

  I have OID1 server where I have installed OID11g and WLS using SSL Port 3131 and Non SSL Port 3060. The ldap set up is working as the sqlnet connections are using ldap adapter to resolve the request.
  I have OID2 server where I have installed OID11g using the same port.
  Now, I want to setup a cluster for these two so that the the load balancer will automatically route the requests to either of the two servers so that if one is unavailable, the other will fill the request. I am following "Configuring High Availability for Identity Management Components" document, but it is not very what steps needs to be followed.
  Any suggestion will be appreciated;
  I am also having problem using ldapbind or any of the oid commands as it gives "unable to locate message file: ldap<language>.msb" despite the fact that I am seting all the env vars such as ORACLE_HOME, ORACLE_INTANCE, ORA_NLS33 and so on.

  You don't need to setup a cluster for Load balancer. The Load balancer configuration can point to both the server and depending on the configuration in LBR act in failover and load balanced mode. All you need to take care of is that the two OID servers are using the same schema.
  When installing first OID server it gives a option to install in cluster mode and when installing the second server you can use the option to expand the cluster created in first installation. But that should not stop you from configuring OID in highly available mode using Load balancer as explained above.
  "unable to locate message file: ldap<language>.msb" occurs if you have not set the ORACLE_HOME variable. See that it is set to <MiddlewareHome>/Oracle_IDM1 if you have used the defaults.
  Hope this helps,
  Sagar

• FIM installation in High Availability Mode

  Experts,
  I am planning to install FIM in high availability mode.
  FIM Portal on four servers
  FIM Service on four servers and
  FIM Portal on four servers.
  Any document that can guide me for this.
  Thanks,
  Mann

  See these
  Preinstallation and Topology Configuration
  FIM 2010 high availability
  I also recommend this FIM book by David & Brad
  FIM R2 Best Practices Volume 1: Introduction, Architecture And Installation Of Forefront Identity Manager 2010 R2

• Identity management 11g in High Availability Mode.

  Hi All,
  Can any one please give me some pointers on how to configure Identity management 11g in High Availability Mode. If possible please provide some document links for reference.
  Currectly I am looking into below Oracle Ducument.
  http://download.oracle.com/docs/cd/E15523_01/core.1111/e12035/directorytier_im.htm#BACIEEBD
  This document completely configuring the High Avaialability case when we have Oracle Data Base in RAC mode. Please correct me if i am wrong.
  But I just wanted to know how can we configure the high availability mode without Oracle DataBase in RAC mode.
  Do we need to configure the DataBase in high Availability Mode also?
  Thanks in Advance.
  Siva Pokuri.

  Below resources should be of some help to you:
  http://www.oracle.com/technology/products/ias/hi_av/F5v9LBR.pdf
  http://www.oracle.com/technology/products/ias/hi_av/904_Distributed_IM.pdf
  http://www.oracle.com/technology/products/ias/hi_av/904_rack_mounted_im.pdf
  http://www.oracle.com/technology/products/ias/hi_av/904_cfc_im.pdf
  http://www.oracle.com/technology/products/ias/hi_av/OracleASInfraHAArchs.pdf

• Cisco ISE in High Availability mode

  Hello
  Need some help, I have hardware cisco ISE 3315, want to go for high availability now, my question is that;
  1. Is Cisco ISE available on Hyper V ?
  2. Is it possible to configure 1 hardware , and other virtual (VMware / HyperV {If available}) in high availability mode ?
  Thank you very much.

  While ISE may run in Hyper-V, it will definitely not be supported so I recommend staying away from doing that. The only supported virtual environment is VMware. If you only have Hyper-V then you will have to get another appliance. Do keep in mind that the 3315s are EOL/EOS. The replacement models for those are the 3415.
  As it was already stated above Charles and Karsten, you can mix virtual and physical appliances. So if you do en up going with a supported virtual solution make sure that the resources for the ISE nodes are dedicated/reserved and that thin provisioning is also NOT supported. 
  Hope this helps!
  Thank you for rating helpful posts! 

• 11g OID Configuration in High Availability Mode on OEL5.6 64 Bit

  Hi Could you please provide me with some good document to install and configure 11g OID (Oracle Internet Directory) Configuration in High Availability Mode on OEL5.6 64 Bit.
  Regards
  Mohammed Riyaz Ahmed

  Hi,
  You get OID 11g as part of OFM 11g. Refer here for docs on high availability:
  http://docs.oracle.com/cd/E21764_01/install.1111/e12002/overview.htm#CJAJEDFC
  For other OID docs:
  http://www.oracle.com/technetwork/documentation/oid-089101.html
  I hope this helps.
  regards,
  GP

• OSSO in High Availability Mode

  Hi All,
  Can anyone please tell me how to configure the OSSO 10.1.4.3 in High Availability & FailOver cases?
  Thanks in Advance.
  Siva Pokuri.

  Read the docs http://download.oracle.com/docs/cd/B28196_01/idmanage.1014/b15988/advconfg.htm#i1011679

• RF pass through not working in High ECO mode stand...

  I recently changed the ECO mode on my BT G4 DTR-T2100 box from Low to High - I have the RF loop through power option set to On but when my box goes into low power standby (red light on the front) my TV picture starts pixelating.  The moment I press the power button on the BT box the TV displays a normal picture so it looks like the box is not providing power to the RF pass through when in low power standby?  Any one else have the same problem?  Is the box faulty or is there a problem with the software?
  Solved!
  Go to Solution.

  zulu17 wrote:
  That is how the box is designed to work.
  If you look at user guide P29 of the current version on the web it explains that you need to be at Low eco mode for RF loop thru.
  Thanks - makes some sort of sense I suppose though it would be more obvious if the RF option was disabled if the High Eco option is selected.

• How to configure cisco 3650-24ts-s switch in high availability mode

  Hi, I bought 2 nos 3650-24ts-s switch with accessories. i have created 10 vlans & given internal access in one switch. Now I need to configure another switch as standby or HA mode so if any thing goes wrong in first switch, second one will take  automatic.  Pl help to provide me step by step guide for doing the same.thnaks

  Depending on license you could have access to setup HSRP between them. Since they aren't stacked switches I would also do a port channel.

• Running SAP XI in High Availability

  Bonjour a vous tous !
  I am looking for best practices when running SAP Exchange Infrastructure (3.0, well it is now XI 7.0 with the new NW2004s – SP9) in High Availability mode.
  The customer that I work with does not know yet on which platform its production environment will be (Unix/Oracle vs Microsoft/SqlServer 20005). I know that some hardware vendor has built-in HA capabilities, either Software/Hardware based (MSFT MCS, IBM HACMP, etc).
  Should we go for an "SAP XI all-In One" installation or distributed one ?  Should we get one central SLD or one per environment? What is the role of the SLD and Solution Manager? Do they need to be interconnected?
  I have worked with other EAI middlewares (Biztralk Server and webMethods) and normally the Integration Engine sit on it's own server and the various adapters are on their respective servers (i.e.: one server for HTTP, one server for FTP, one server for EJB, etc), since the sizing (RAM. Java heap memory, etc) for all theses adapters are different (FTP a lot of small file, EJB not so many request, but they could eat-up a lot of CPU, etc). Is this a best practice that I can apply also with SAP XI ?
  Thank in advance for you help !
  A+

  Hi Michel,
  Well we seem to work along the same track...
  I am working on 2 customers concurrently - the one using like you using PI 7.0. In their case we implemented a Windows solution using W2K3 Enterprise Edition 64-bit. Avoid 32-bit as it will no longer be supported by SAP next year. We are using MSCS (which is part of the Enterprise Edition by default).
  The 2nd is a solaris customer (very large) for which we are using a cross-data center solution handled by Veritas Cluster Manager with automatic failover between systems and data centers if required.
  Some answers to your questions:
  1. All-in-one - yes
  2. SLD - one for DEV/QA, and separate for Prod - this is recomended by SAP too - I can mail you a guide if needed
  3. With Solution Manager 4.0, it now supports the J2EE side and hence can understand SLDs. The concept is to setup an HA Solution Manager and deploy the SLD for Prod on the same piece of kit.
  4. SAP do not recomend splitting off the Adapter Engine except for specific cases, the main reason being if you have specific systems behind firewalls that you need to communicate with.
  Under no circumstances should you have separate AE's per adapter - this would be an extermely expensive solution hardware and support-wise.
  Regards
  Brian

• Many VLFs in high availability database

  Hi,
  I have a database in high availability mode with a Log file of 16GB. Running DBCC SQLPERF (LOGSPACE) reveals that only 0.03% of the file is used. So I'd like to shrink the file. I performed full and transaction backups and tried to shrink, but nothing happens.
  I executed DBCC OPENTRAN but no transaction is open on the DB. Executing SELECT name,log_reuse_wait_desc FROM sys.databases; returns "NOTHING". But If I run DBCC LOGINFO I see 320 Virtual log files, with about 200 being marked with STATUS 2 (not
  reusabale).
  Looking at the Always-on availability dashboard shows that replication is fine.
  Does somebody know why these VLFs are marked as such?
  Thanks

  with about 200 being marked with STATUS 2 (not reusabale).
  No need to worry about this, you can read below link
  http://blog.moserit.com/virtual-log-file-monitoring-with-dbcc-loginfo-in-alwayson
  Though we mark the log records as available for cleanup, the actual process of cleaning up is deferred.  Since the new available space is tracked but the VLFs themselves are not
  yet marked as inactive it is not reported as such by DBCC LOGINFO directly.  The other commands such as DBCC SQLPERF(‘LOGSPACE’) accurately report the free space since they include the VLFs marked for deferred cleanup when accounting for space. 
  There is, unfortunately, no equivalent of the DBCC LOGINFO currently that can track VLFs marked for deferred cleanup.

• Tuxedo and High Availability

  Can you provide some information on how Tuxedo can be configured in a high availability
  environment. Specifically running Tux 7.1 on AIX 4.3 with HACMP/ES. I am planning
  on running with a 'cascading N+1' configuration and have concerns over the ability
  of the standby node to take over a failed node succesfully due to config dependancies
  on the machine name. Is there a white paper detailing use of Tux in a high availability
  environment ?

  Found the answers and thought would share it.
  1. Can load balancing be achieved in MP setup or is this a high availability configuration?
  Both - MP supports load balancing and high availability 2. In an MP setup, can a workstation client continue to work even after the master node gets migrated? If so, can we have both (or all nodes and their WSL) listed in WSNADDR for this to happen
  Correct.

• ASA 5520 High Availability

  I have two ASA 5520s.  One has an IDS card and one doesn't. This makes the high availability wizard fail.  Can I manually setup the high availability.  I don't really need two ASA-SSM-20s.  I just want to have one ASA in Standby mode.  Is this possible.  Anybody have a configuration similar to this?
  Thanks,
  Alex Pfeil                  

  Hi,
  Let me first say that I have not configure a Failover pair where the units dont have matching hardware. So I kind of wonder even if the ASA accepts the configurations, will the failover act normally.
  Usually if I configure basic configurations for some ASA Failover pair I first configure all the basic configurations on the ASA and make sure that each interface on the ASA has the "ip address x.x.x.1 255.255.255.0 standby x.x.x.2" configuration under the interfaces
  I then configure the existing ASA with a basic Failover configuration such as
  failover
  failover replication http
  failover lan unit primary
  failover lan interface failover Management0/0
  failover key
  failover link failover Management0/0
  failover interface ip failover 255.255.255.0 standby
  I then prepare a blank ASA and finally configure its Failover too
  failover
  failover replication http
  failover lan unit secondary
  failover lan interface failover Management0/0
  failover key
  failover link failover Management0/0
  failover interface ip failover 255.255.255.0 standby
  I will then attach the Secondary unit to the network and finally attach the Failover link between the ASAs and let the Primary unit replicate all the configurations to the Secondary unit.
  Naturally this is something that would probably be best done during a separate scheduled maintanance break along with configuration backups etc just to be on the safe side.
  - Jouni

• NAC High Availability: Users getting disconnected during failover

  Hi,
  We have a pair of CAS in in-band virtual-gateway mode in high availability mode.
  We are still running some tests but we have noticed that the clients are losing connectivity during the failover.
  * The service ip is always active (never stops responding pings).
  * The stand-by CAS becomes active immediatly after we shut down the primary, we see it on the CAM.
  * The client however looses connectivity with the internal network for almost two minutes.
  I'm guessing this isn't normal, but would like to know what is the expected behaviour on this.
  Thanks and regards,

  We configured another pair today and we are noticing the same behaviour, however it seems random... sometimes the user barely looses connection, other times it will take from 2-5 minutes for it to come back.
  We are only using eth2 for the failover link since we only have one serial port.
  When we test we make sure both servers are up and then we reboot the primary. The secondary becomes active immediately. When both are up again we repeat the process.
  any other ideas? something we should check?
  Thanks!