1 |
Am Fri, 24 Feb 2017 03:42:52 +0000 |
2 |
schrieb "J. Roeleveld" <joost@××××××××.org>: |
3 |
|
4 |
> On February 24, 2017 12:55:26 AM GMT+01:00, thelma@×××××××××××.com |
5 |
> wrote: |
6 |
> >I have two networks connected over VPN |
7 |
> > |
8 |
> >1st Network has 3-box (only one active) |
9 |
> >2nd Remote Network has 4-boxes (only two active at any given time) |
10 |
> > |
11 |
> >All boxes are configure to run: Hylafax, Asterisk (but only one at a |
12 |
> >time act as a server). |
13 |
> > |
14 |
> >Various external devises like Sipur, Audiocodes has to be configure |
15 |
> >(IP change) to register to Asterisk server; if I switch a box that |
16 |
> >acts as a |
17 |
> >server, I need to login to each device and change the IP. |
18 |
> > |
19 |
> >Hylafax is relatively simple to switch, but "yajhfc" that view the |
20 |
> >faxes |
21 |
> >has to have an IP changed. |
22 |
> >Audiocodes - is a nightmare to change IP. |
23 |
> >Local Asterisk registers with Remote Network over VPN so IP's need to |
24 |
> >change as well. |
25 |
> > |
26 |
> >Is there an easier way to mange it? |
27 |
> |
28 |
> Have the active server add a 2nd IP to its network interface and |
29 |
> configure the clients to use that IP. When switching to a different |
30 |
> server (making a different one active), move that 2nd IP to the new |
31 |
> active server. |
32 |
|
33 |
This is the best way to go. |
34 |
|
35 |
> This is how most active/passive failovers actually work. |
36 |
|
37 |
Yes, plus they send an ARP packet to update the local peers and switches |
38 |
with the move because usually also a virtual MAC address will be moved |
39 |
over to the other interface. |
40 |
|
41 |
This is especially important for the local VPN router so remote peers |
42 |
are able to immediately reach the moved IP. |
43 |
|
44 |
Usually, the network stack would generate such ARP packets. I'd ensure |
45 |
with wireshark that this really takes place in the correct order so you |
46 |
don't diagnose unexpected troubles later. You need a switch with mirror |
47 |
port for this to work correctly with wireshark. |
48 |
|
49 |
See https://wiki.wireshark.org/Gratuitous_ARP |
50 |
|
51 |
|
52 |
-- |
53 |
Regards, |
54 |
Kai |
55 |
|
56 |
Replies to list-only preferred. |