Author Topic: Standalone SA 2500 at two locations with two Public IP and one DNS record  (Read 1921 times)

Abbas Mirza

  • Newbie
  • *
  • Posts: 1
  • Karma: +0/-0
    • View Profile
Hi,

I would like to know if this kind of setup and solution is possible and would appreciate if anyone could help me in this.

We have two Sites Site A and Site B with different ISP providers and both the sites are connected by 40Mb wireless link. We have a standalone SA 2500 device in one of our location (Site A) with external IP for example 1.1.1.1 from (ISP A) , External users use the URL vpn.abc.com to access the SA 2500 to get connected to the internal resources.

Now we have purchaced another SA 2500 device, we would like to install this box at other location (Site B) as a standalone device with external IP for example 2.2.2.2 from (ISP B).

I will add the DNS record for new device 2.2.2.2 as vpn.abc.com as well. I would like to know whether in this kind of setup load sharing between the two SA 2500 devices is possible as external users will use one one url vpn.abc.com which has 2 DNS records mapped to both 1.1.1.1 and 2.2.2.2

The idea is to have redundancy at hardware level as well as ISP level so that even if one hardware fails or one ISP is down my external users should not be affected and should be connected to internal network with the active device or ISP.

Kindly let me know if this kind of a setup is possible. If not what are the alternate Solution for this.

Regards,

Abbas Mirza

corwin78

  • Jr. Member
  • **
  • Posts: 50
  • Karma: +4/-1
    • View Profile
Hello, It is called Active/Active cluster and External load balancer is need. See Juniper SA Admin Guide for more information.
SA-6000, active/passive cluster, 7.1R6