Thread: Config HA cluster on solaris 9
View Single Post
  #1 (permalink)  
Old 2007-02-12
seanw seanw is offline
Junior Member
  
Join Date: 2007-02-11
Posts: 25
Rep Power: 0
seanw has an average reputation (10+)
Default Config HA cluster on solaris 9
Hi Guys

Just a quick question

I have recently setup a test lab at home using solaris 9 with NG55 on the enforcement nodes and NGX60 on windows 2003 management station. What i want to no is in order to create all the route needed on both nodes and for using manual nat and for setting up proxy arps i have created /etc/rc3.d/S89fwroutes. Can someone just tell me if this is the right solution for the job.


All IP adresses listed are fictional

fwroutes
#Individual routes to 10. network removed as superceded
#SW
# Disable Solaris routing
/usr/sbin/ndd -set /dev/ip ip_forwarding 0

# Default route to router inside

/usr/sbin/route add net 0 192.168.5.254 1

# Route to other LAN range

/usr/sbin/route add net 194.17.1.0 172.16.2.254 1

# Route to network

/usr/sbin/route add net 10.22.9 -netmask 255.255.255.0 192.168.7.96 1
/usr/sbin/route add host 10.22.3.135 192.168.7.96 1
/usr/sbin/route add host 10.22.5.135 192.168.7.96 1

# external routes

/usr/sbin/route add net 194.1 194.10.11.25 1
/usr/sbin/route add net 194.1 194.10.11.25 1
/usr/sbin/route add net 194.1 194.10.11.25 1
/usr/sbin/route add net 194.2 194.10.11.25 1


# Static ARP table

/usr/sbin/arp -s 194.10.11.27 0:3:ba:99:ef:d1 pub
/usr/sbin/arp -s 194.10.11.29 0:3:ba:99:ef:d1 pub
/usr/sbin/arp -s 81.174.26.1 0:3:ba:99:ef:d1 pub
/usr/sbin/arp -s 81.174.26.2 0:3:ba:99:ef:d1 pub
/usr/sbin/arp -s 81.174.26.3 0:3:ba:99:ef:d1 pub

#Added NAT routes

/usr/sbin/route add host 193.17.46.19 193.17.47.19 1
/usr/sbin/route add host 193.17.46.10 192.168.66.106 1
/usr/sbin/route add host 193.17.46.12 193.17.47.12 1
/usr/sbin/route add host 193.17.46.13 193.17.47.11 1


Node 1
bash-2.05# cphaprob state

Cluster Mode: New High Availability (Active Up)

Number Unique Address Assigned Load State

1 10.0.0.103 0% standby sync network
2 (local) 10.0.0.102 100% active sync network

bash-2.05# cphaprob -a if

Required interfaces: 3
Required secured interfaces: 1

hme0 UP non sync(non secured), multicast
hme3 UP sync(secured), multicast
qfe0 UP non sync(non secured), multicast
qfe1 DOWN (80188.6 secs)non sync(non secured), multicast
qfe3 DOWN (80188.6 secs)non sync(non secured), multicast

Virtual cluster interfaces: 3

hme0 192.168.4.100
qfe0 192.168.1.100
qfe3 81.174.26.1


Node 2
bash-2.05# cphaprob state

Cluster Mode: New High Availability (Active Up)

Number Unique Address Assigned Load State

1 (local) 10.0.0.103 0% standby
2 10.0.0.102 100% active

bash-2.05# cphaprob -a if

Required interfaces: 3
Required secured interfaces: 1

hme0 UP non sync(non secured), multicast
hme1 UP sync(secured), multicast
qfe0 UP non sync(non secured), multicast
qfe1 DOWN (80156 secs)non sync(non secured), multicast
qfe3 DOWN (80156 secs)non sync(non secured), multicast

Virtual cluster interfaces: 3

hme0 192.168.4.100
qfe0 192.168.1.100
qfe3 81.174.26.1
Reply With Quote