none
UAG // HWLB // DirectAcces

    Question

  • Quoting TechNet on two articles:

    http://technet.microsoft.com/en-us/library/ee191502.aspx (DirectAccess NLB)

    http://technet.microsoft.com/en-us/library/ee690463.aspx (DirectAccess HWLB)

    My question revolves around the configuration of directaccess on 2008R2 with a pair of UAG servers. Am I right in thinking with NLB each direct access requires a publically routable DIP plus 2 consecutive publically routable VIPs for the DA. Therefore 4 Publically routable IPS (2 being consecutive).

    My customer is wanting to discuss using HWLB, am I right in thinking the HWLB requires 2 consecutive VIPS publically routable for direct access, but also each member of the array requires 2 publically routable DIPS? Therefore in a 2 node array id require 6 Publically routable IPS (each pair being consecutive).

    That being said if, scaling up DirectAccess when using a HWLB id require an extra 2 publically routable DIPS (2 consecutive) for each additional member of the array. Whereas with NLB id only require one DIP as the consecutive IPS are shared amongst all

    I hope this makes some sense.

    Friday, May 17, 2013 8:56 AM

Answers

  • Hi,

    You're right, you need more IPv4 public addresses when building UAG Array in Hardward load balancing rather than Network load Balancing. Microsoft recommandation is to have public IPv4 addresses for DIP, two DIP for each node. But technically speaking, can also use IPv4 public addresses range described in RFC6598. This IP range is not routable on Internet but is recognized as a part of the public address space from UAG point of view.

    A Customer of mine used this "tricks" to build his DirectAccess infrastructure in a HLB scenario. In this case you only need two public IPv4 addresses. I dont know Microsoft PSS position about this. I would say "not tested so not supported".


    BenoitS - Simple by Design http://danstoncloud.com/blogs/simplebydesign/default.aspx

    • Marked as answer by Graham_84 Sunday, May 19, 2013 1:18 PM
    Friday, May 17, 2013 12:22 PM