DAG across 2 Data Centers

Similar Messages

• How to migrate exadata across data centers?

  How to migrate exadata across data centers? Is forklift (or lift & shift) only option for this kind of migration since we are talking about migrating appliance?
  Any best practices/experiences around such migrations?
  Thanks,
  Abhi

  Hi,
  We recently had a data center move and moved some exadata machines to a new location.
  There are a few things to consider before move happens;
  1) Get the network ready on new Data Center and make sure all connectivity (e.g. you can remote access to it) are working.  In our case the new center has same IPs network.
  2) Get the Vendor who does transporting of Hardware Machines.
  3) On the last day before move, Shutdown the Exadata Machine ( shut down database, RAC, shutdown db nodes, cell nodes, infinity band etc.. )
  4) Power off Exadata Machine
  5) Unplug all network cables.
  6) Let the Hardware cool down.
  7) Transport to new location and move the Machines to correct Bay and wait for machines to be acclimatized
  8) Plug Network cables.
  9) Power On Exadata.
  I found a Support note which also you can refer; What Needs to be Done When Moving Cluster Nodes to a New Data Center (Doc ID 1332423.1)
  HTH,
  Pradeep

• Extending VLAN across Data centers

  I hope you can help, I have 2 data centers connected via a L3 10gb (dark fiber) now I have a few more fiber strands available between the 2 data centers; so for Disaster Recovery and server clustering (requiring same subnet) does it make sense to extend certain vlans across using these extra fiber strands or is it best practice to keep the layer 3 separation, thanks in advance!

  Borman
  It does make sense in terms of clustering. Not sure exactly what you mean in terms of disaster recovery, that really depends on your topology/addressing.
  Basically i would route where you can and extend L2 when you have to. Be aware you are extending L2 between data centres and tha brings STP issues. Obvioulsy make sure you only allow the vlans you need on this link and route all else.
  There are other ways to extend a L2 vlan across a L3 link - L2TPv3 springs to mind.
  Jon

• Physical connectivity required to support Nexus L2 extension across data centers

  my customer requires L2 extension across their data centers using Nexus 5596/Nexus 2248. I'm unable to find documentation to confirm my physical connectivity to confirm the logical requirement. Will the diagram below support the requirement to extend their vlans across the two data centers? Thanks for any help you can provide.

  I'm not a Cisco PM, who probably should answer this question; my 2c
  Don't know if you have ACI or simply the standalone N9k running NX-OS in mind.
  If you don't need/want APIC, I would not go for N9k/ACI Version.
  See also the newest information regarding integration of N7k..... into ACI
  http://www.networkworld.com/community/node/85429
  http://finance.yahoo.com/news/cisco-delivers-aci-vision-adds-120000751.html?.tsrc=applewf
  As you said, N9K / ACI doesn't support FCoE (its on the roadmap) and definitely not native FC.
  No Fabric Path, all is VXlan based.
  On the other hand, VXlan (and Fabric Path) support seems to show up on the N7k family (new line card)
  Walter.

• How can I move VMs across data centers without changing their IP addresses?

  This document is old, but I think will help you:
  http://www.sonicwall.com/downloads/VPN_with_Overlapping_Networks.pdf

  Hi All,
  We have many applications that have been developed that do not use DNS but rather static IP addresses to communicate. Moving the VMs that these applications run on to a different subnet would be a huge project. I’m looking for a service that will allow me to move VMs between sites without the need of changing their IP addresses. I’m also looking to do this without spending very much. Cisco OTV and layer 2 circuits with various ISPs will do what I need, but they can be expensive and will add complexity. I’ve also read about Aryaka and Pertino but I’m not sure if they’ll do what I want.
  Is there another option that I’m missing? 
  This topic first appeared in the Spiceworks Community

• Server Load-balancing Across Two Data centers on Layer 3

  Hi,
  I have a customer who would like to load balance two Microsoft Exchange 2010 CAS Servers which are residing across two data centers.
  Which is the best solution for this? Cisco ACE or Cisco ACE GSS or both?

  I would go with source natting the clients ip addresses, so that return traffic from the servers is routed correctly.
  It saves you the trouble with maintaining PBR as well.
  Source NAT can be done on the ACE, by applying the configuration to either the load balancing policy, or adding the configuration to the class-map entries in the multi-match policy.
  Cheers,
  Søren
  Sent from Cisco Technical Support iPad App

• Office Web Apps Farm Across Multiple Data Centers?

  I have not been able to find any definitive information about this but the article below seems to suggest what I have in mind is not recommended.  I am not sure about supported.
  "Stick to one data center.  Servers in an Office Web Apps Server farm must be in the same data center. Don’t distribute them geographically. Generally you need only one farm, unless you have security needs
  that require an isolated network that has its own Office Web Apps Server farm."
  http://technet.microsoft.com/en-us/library/jj219435.aspx#topology
  What I have is two very well connected data centers located in the same metro area.  We will be deploying a Lync EE pool at each site and use pool pairing for DR.  What I am wondering is should I:
  Create a single Office Web Apps farm with the server from each data center as members?
  Create a farm in each site with a single member, but both farms sharing the same URL?
  Create a farm in each site with a single member, but both farms have different names.  This seems unnecessarily ugly, but throwing it out there.
  Since Lync is using Office Web Apps in read only mode the question is different than if SharePoint were involved.  However, I can't rule out this farm also being used for SharePoint down the road.
  The LB/RP device of choice is Citrix NetScaler.  Another thought I had is can that be configured so incoming requests for Office Web Apps at each data center can prioritize traffic to the server or farm within that data center?  If that is unavailable
  then switch to the server at the other data center?
  Thanks.

  Hi,
  An Office Web Apps farm can be deployed to provide functionality for multiple sites.
  Also you can deploy one Web Apps farm on each site.
  So I think you can choose to deploy with the option one and three as you said.
  Here is a case about deploying Lync deploy Office Web Apps server may help you:
  http://social.technet.microsoft.com/Forums/lync/en-US/7e67bacf-4895-4bdb-95b8-0aff8a0c575f/geographical-placement-of-office-web-app-servers?forum=lyncdeploy
  Best Regards,
  Eason Huang
  Eason Huang
  TechNet Community Support

• Requirements about delay and bandwith for using OTV in Nexus 7000 between two data centers separated 25 miles?

  We have two Nexus 7000, and I need use them with OTV between two data Centers separated 25 miles, but I don´t know what are the optimal values about bandwidth and delay (ms) for extended VLANs IDs (production and DAG replication) for Microsoft Exchange environment. Can somebody tell me please which are the values required for operate OTV in optimal conditions in this case? We have about 35 000 users that will use that platform of email. Thanks a lot for your comments. Regards.

  We have two Nexus 7000, and I need use them with OTV between two data Centers separated 25 miles, but I don´t know what are the optimal values about bandwidth and delay (ms) for extended VLANs IDs (production and DAG replication) for Microsoft Exchange environment. Can somebody tell me please which are the values required for operate OTV in optimal conditions in this case? We have about 35 000 users that will use that platform of email. Thanks a lot for your comments. Regards.

• WAN Vlan optimization between 2 Data Centers - 4451 Router

  Hello Group gurus,
  I have little odd question 
  We have 2 Data Centers, we have dedicated 1Gig link across them. we want to optimize certain Vlan traffic across them. 
  we have 4451 routers installed at each location and OSPF running for end subnets to know each other. but that is routing part completed.
  however how can we utilize UCSE chassis of 4451 to optimize vlan traffic across data center is still a query.
  I tried to find out document on google but specific to my requirement has not seen on.
  if someone already set up this type of scenario, please help.
  Thanks in advance

  Hi John, I think it's best to use the right equipment for the job. If you've already got a router in place and you're not in a campus/metro/ISP environment, it's not really prudent to use another router. A simple layer 2 or layer 3 switch can accomplish this and give you plenty of ports at a much better price per port.
  You may want to look in to the SG300 series switch if you want something that can handle route load and give ample amount of ports.

• Can you cluster Coherence over data centers?

  We're currently running two separate Coherence clusters in different data centers. One is prod, the other DR.
  Would it be possible to cluster the nodes from each of these to create one cluster spanning both data centers? Then in a failover scenario the data would already be available.
  I know Coherence nodes heartbeat to one another to retain cluster membership and that there is a TTL setting to determine packet life. Would have nodes in different data centers result in heartbeats being missed or TTLs killing packets?
  Has anyone had any success with this?

  Coherence performance is related to the latency between nodes. Having one cluster spread over 2 data centers could harm performance (some timeouts could have to be changed to prevent nodes from data center A to claim another node in datacenter B is out of reach/possibly dead).
  When you lose network connectivity between the 2 data centers (note i'm not saying "if you lose connectivity". It WILL happen), you're welcome into the "split brain world", each half of the grid believing the other is dead and claiming to be the "master". And thus, if you have data replicated on N nodes, the master/backups are redispatched all over each datacenter, harming performance for a few minutes (the timing depending of course on many parameters...). And of course the data will no longer be synchronized between the 2 data centers. The quorum has to be thought of, and stuff like that...
  I might be wrong, but AFAIK I'd rather have 2 separate clusters. I believe 12.1 has new features to replicate data the the master grid to the DR one, I have not been through all the new documentation.

• Need suggestion for ISE distributed deployment model in two different data centers along with public certificate for HTTPS

  Hi Experts,
  I am bit confused about ISE distributed deployment model .
  I have two data centers one is DC & other one is as a DR I have  requirement of guest access service implementation using CWA and get public certificate for HTTPS to avoid certificate error on client devices :
  how do i deploy ISE persona for HA in this two data centers
  After reading cisco doc , understood that we can have two PAN ( Primary in DC  & Secondary in DR ) like wise for MnT (Monitoring will be as same as PAN ) however I can have 5 PSN running in secondary i.e. in DR ISE however I have confusion about HA for PSN .. since we have all PSN in secondary , it would not work for HA if it fails
  Can anybody suggest me the best deployment solution for this scenario ?
  Another doubt about public certificate :
   Public Certificate: The ISE domain must be a registered or part of a registered domain name on the Internet. for that I need Domain name being used from customer .
  Please do correct me if I am wrong about certificate understanding :
  since Guest will be the outside users , we can not use certificate from internal CA , we need to get the certificate from service provider and install the same in both the ISE servers
  Can anybody explain the procedure to opt the public certificate for HTTPS from service provider ? And how do i install it in both the ISE servers ?

  Hi there. Let me try answering your questions:
  PSN HA: The PSNs are not configured as "primary" or "secondary" inside your ISE deployment. They are just PSN nodes as far as ISE is concerned. Instead, inside your NADs (In your case WLCs) you can specify which PSN is primary, which one is secondary, etc. You can accomplish this by:
  1. Defining all PSN nodes as AAA radius servers inside the WLC
  2. Then under the SSID > AAA Servers Tab, you can list the AAA servers in the order that you prefer. As a result, the WLC will always use the first server listed until that server fails/gets reloaded, etc. 
  3. As a result, you can have one WLC or SSID prefer PSN server A (located in primary DC) while a second WLC or SSID prefer PSN server B (located in backup DC)
  Last but not the least, you could also place PSNs behind a load balancer and that way the traffic would be equally distributed between multiple PSNs. However, the PSN nodes must be Layer 2 adjacent, which is probably not the case if they are located in two different Data Centers
  Certificates: Yes, you would want to get a public certificate to service the guest portal. Getting a public/well known certificate would ensure that most devices out there would trust the CA that signed your ISE certificate. For instance, VeriSign, GoDaddy, Entrust are some of the ones out there that would work just fine. On the other hand, if you use a certificate that was signed by your internal CA, then things would be fine for your internal endpoints that trust your internal CA but for any outsiders (Guests, contractors, etc) that do not trust and do not know who your internal CA is would get a certificate error when being redirected to the ISE guest portal. This in general is only a "cosmetic" issue and if the users click "continue" and add your CA as a trusted authority, the guest page would load and the session would work. However, most users out there would not feel safe to proceed and you will most likely get a lot of calls to your helpdesk :)
  I hope this helps!
  Thank you for rating helpful posts!

• Guest N+1 redundancy & load balancing in seperate data centers

  I need assistance in aquiring documentation to setup N+1 redundancy & load balancing between two seperate guest anchor controllers installed in seperate data centers. Can you explaing how it should be setup or point me in the right direction for documentation? If you can't point me in the right direction to aquire documentation; can you answer the following questions?
  1) How do I setup my mobility groups on my guest anchor controllers installed in the DMZ? Should both guest anchor's be in the same mobility group.
  2) Do both guest anchors share the same virtual IP or do they need to be seperate (DMZ01 - 1.1.1.1 / DMZ02 - 2.2.2.2)? I think seperate!
  3) Are there any configuration parameters on the guest anchors for load balancing?
  4) Do either on of the guest anchors need to be setup as a master controller? I'm not sure?
  5) Are there any configuration parameters on the foreign controllers for load balancing?
  6) How do I setup my foreign controllers? Should both guest controllers be added to the mobility group on the foreigh controller? I would think both of them would be added to the foreign controller mobility group.
  7) Should both guest anchors be added as an anchor on the WLAN? I would think both controllers would need to be added as anchors under the WLAN!
  8) Am I missing anything here? This is how I think it should logically work?
  Thanks,
  Gordon

  I need to elaborate on my questions:
  1) Do both of my guest DMZ anchors need to be in a seperate mobility group on their own or can the guest anchors be in completely seperate mobility groups? All 100 + foreign controllers are in seperate mobility groups.
  I) Example #1: Guest anchor number 1 (Mobility group: DMZ) / Guest anchor number 2 (Mobility group: DMZ)
  II) Example #2: Guest anchor number 1 (Mobility group: DMZ01) / Guest anchor number 2 (Mobility group: DMZ02)
  2) Do both guest anchor controllers have to be configured with seperate virtual IP's or do they share the same address?
  I) Follow up to this question: I want to register the DMZ controllers with our DNS servers so that my clients receive a name when authenticating through my customized webauth. I am currently using 1.1.1.1 as the virtual address and I'm pretty sure this is the address I need to register with my external DNS server. My question is this. Does the address I use for the virtual interface matter? 1.1.1.1 is not a valid address with my network. Do I need to assign a valid address registered with my network if I'm going to add this address to my external DNS servers?
  3) No change to my original question.
  4) No change to my original question.
  5) No change to my original question. I have run into Cisco documentation that mentions guest anchor load balancing, but the documentation is very vague. I'd love to be able to load balance as the network group wants to limit my guest traffic to the internet. I could double my pipe if I could load balance the guest anchors.
  6) No change to my original question, but the answer to question one is key to the setup of my foreign controllers.
  7) Elaboration: Should both guest controllers be added as an anchor under the WLAN on the foreign controllers? I would think both of them would be added.
  8) No change:
  9) Should my secondary guest controller be added as an anchor on the WLAN of the primary guest DMZ controller and visa versa?
  Can my Cisco expert answer this or do I need to open a TAC case?
  Thanks,
  Gordon Shelhon
  SR. Wireless Services Engineer
  Company: Not specified

• Report of projects across cost centers and vice versa

  Hi friends,
  Do we have any standard report of Projects across Cost Centers and vice versa?
  In our case, it is statistical cost center postings and real project postings. How can we get a standard report of Projects across Cost centers ?
  thanks in advance,
  San

  Refer the thread
  Reports on Statistical WBS
  In the report CJI3- Actual Line Item Report, pull in the field Partner Object in this case it would be Cost Centre (where actuals are posted)
  Regards
  Sreenivas

• Exchange DAG Replication Data Rate

  i need some information regarding DAG replication issue. In my environment there is two mailbox server. One DC and another in DR site. The connectivity between DC and DR site is VPN. Bandwidth is one MB. But in VPN connection have ping loss. The ping loss rate
  1-2%. In my environment twodatabase.
  one is single and another is under the dag member. when i move mailbox from single to dag database the move rate is so slow and sometimes database going to dismount. I think its happened as because connectivity issue. 
  Can you please suggest the details about dag replication. I need to know that: what is dag replication
  data rate? also the acceptable rate of ping loss and How much rate connectivity between DAG Heartbeat connection.
  Please suggest as soon as possible.
  Thanks,
  Parvez

  Hi Parvez,
  From your description, I would like to clarify the following things:
  1. It is not recommended to install Exchange server on DC.
  2. The witness server is needed when there's an even number of members in the DAG. Based on your case, you need a file share witness server.
  3. The DAG replication rate depends on the replication traffic.
  4. By default, heartbeat frequency (subnet delay) is 1000ms for both local and remote subnets. When a node misses 5 heartbeats (subnet threshold) another nod within your DAG cluster will initiate a failover.
  What's more, here are some helpful threads for your reference.
  Planning for High Availability and Site Resilience
  http://technet.microsoft.com/en-us/library/dd638104(v=exchg.150).aspx
  Exchange 2010: Collapsing DAG Networks
  http://blogs.technet.com/b/timmcmic/archive/2011/09/26/exchange-2010-collapsing-dag-networks.aspx
  Hope my clarification is helpful.
  Best regards,
  Amy
  Amy Wang
  TechNet Community Support

• Long distance application failover between data centers.

  Hello:
  I am working a project where there is a requirement to have a primary server and a secondary for application failover. The requirements dictate that the servers must be geographically separate at separate data centers but yet on the same IP subnet so that heartbeat messages are not natively routed. What protocol can I use to bridge the subnet over an IP routed network? GRE? L2TP?

  GRE will not work as according to the last information I have you cannot bridge over a GRE tunnel. We had one such application with similar requirements and we ended up using L2TPv3 that allows transparent LAN extension. We have not had any issues with it and if you are only going to use it for heartbeats you should not run into any performance issues. L2TPv3 does tend to drive the CPU utilization high in case you have a lot of data traversing the tunnel.