Re: [Zenloadbalancer-support] Can we configure below scenario with zen loadbalancing?
Hey there, Its an checkpoint and yes all the traffic getting encrypted before put on MPLS link. On 15 Apr 2015 12:11, Mathieu Chateau mathieu.chat...@lotp.fr wrote: what's your firewall brand? You configuration looks like protect traffic and make it goes through vpn or mpls while you want send traffic trhough mpls or vpn Cordialement, Mathieu CHATEAU http://www.lotp.fr 2015-04-14 21:34 GMT+02:00 Manish Rane manish...@gmail.com: Absolutely I do have that same configured on firewall only but the funny thing is since firewall is doing the rudundancy part and have tunnel configured as a backup path. The traffic originated from 192.168.0.0/24 to 1.0/24 or vice-versa being an interesting traffic or from encryption domain firewall encrypts it and puts up on MPLS link so each and every traffic is getting encrypted/decypted on MPLS link as well which is eating up my resources. -- Thanks and Regards, Manish R On Wed, Apr 15, 2015 at 12:35 AM, Mathieu Chateau mathieu.chat...@lotp.fr wrote: hello, use NAT on firewall to hide source and be sure it's ok. Your firewall should be able to manage isp redundancy directly, which would make your setup a lot easier (no use of zen) You will need to test all type of failure (mpls router down, wan behind mpls down, failback when it works again, MTU..) Cordialement, Mathieu CHATEAU http://www.lotp.fr 2015-04-14 20:17 GMT+02:00 Manish Rane manish...@gmail.com: Hi Guys, Please have a look at the diagram and let me know if I can deploy zenloadbalancer with ISP load balancing module enabled and achieve redundancy? In below scenario from Site -A 192.168.0.0/24 my primary path is always MPLS link if somehow MPLS goes down zenlb should be able to change the gateway and start pointing towards Firewall so that VPN tunnel will come up. The only point I think could cause issue about reverse route at other side lets say traffic originated from 192.168.0.0/24 desitned to 192.168.1.0 shld not come back from router it even should come back to firewall as the link is down hence wondering if I can enable this scenario using zen LB? Can you guys provide any help here or advice me? -- BPM Camp - Free Virtual Workshop May 6th at 10am PDT/1PM EDT Develop your own process in accordance with the BPMN 2 standard Learn Process modeling best practices with Bonita BPM through live exercises http://www.bonitasoft.com/be-part-of-it/events/bpm-camp-virtual- event?utm_ source=Sourceforge_BPM_Camp_5_6_15utm_medium=emailutm_campaign=VA_SF ___ Zenloadbalancer-support mailing list Zenloadbalancer-support@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/zenloadbalancer-support -- BPM Camp - Free Virtual Workshop May 6th at 10am PDT/1PM EDT Develop your own process in accordance with the BPMN 2 standard Learn Process modeling best practices with Bonita BPM through live exercises http://www.bonitasoft.com/be-part-of-it/events/bpm-camp-virtual- event?utm_ source=Sourceforge_BPM_Camp_5_6_15utm_medium=emailutm_campaign=VA_SF ___ Zenloadbalancer-support mailing list Zenloadbalancer-support@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/zenloadbalancer-support -- BPM Camp - Free Virtual Workshop May 6th at 10am PDT/1PM EDT Develop your own process in accordance with the BPMN 2 standard Learn Process modeling best practices with Bonita BPM through live exercises http://www.bonitasoft.com/be-part-of-it/events/bpm-camp-virtual- event?utm_ source=Sourceforge_BPM_Camp_5_6_15utm_medium=emailutm_campaign=VA_SF ___ Zenloadbalancer-support mailing list Zenloadbalancer-support@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/zenloadbalancer-support -- BPM Camp - Free Virtual Workshop May 6th at 10am PDT/1PM EDT Develop your own process in accordance with the BPMN 2 standard Learn Process modeling best practices with Bonita BPM through live exercises http://www.bonitasoft.com/be-part-of-it/events/bpm-camp-virtual- event?utm_ source=Sourceforge_BPM_Camp_5_6_15utm_medium=emailutm_campaign=VA_SF ___ Zenloadbalancer-support mailing list Zenloadbalancer-support@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/zenloadbalancer-support -- BPM Camp - Free Virtual Workshop May 6th at 10am PDT/1PM EDT Develop your own process in
Re: [Zenloadbalancer-support] Can we configure below scenario with zen loadbalancing?
Checkpoint is a high end firewall, it should definitely be able to do what you want. But i didn't put my hand on it for a while... Cordialement, Mathieu CHATEAU http://www.lotp.fr 2015-04-15 20:10 GMT+02:00 Manish Rane manish...@gmail.com: Hey there, Its an checkpoint and yes all the traffic getting encrypted before put on MPLS link. On 15 Apr 2015 12:11, Mathieu Chateau mathieu.chat...@lotp.fr wrote: what's your firewall brand? You configuration looks like protect traffic and make it goes through vpn or mpls while you want send traffic trhough mpls or vpn Cordialement, Mathieu CHATEAU http://www.lotp.fr 2015-04-14 21:34 GMT+02:00 Manish Rane manish...@gmail.com: Absolutely I do have that same configured on firewall only but the funny thing is since firewall is doing the rudundancy part and have tunnel configured as a backup path. The traffic originated from 192.168.0.0/24 to 1.0/24 or vice-versa being an interesting traffic or from encryption domain firewall encrypts it and puts up on MPLS link so each and every traffic is getting encrypted/decypted on MPLS link as well which is eating up my resources. -- Thanks and Regards, Manish R On Wed, Apr 15, 2015 at 12:35 AM, Mathieu Chateau mathieu.chat...@lotp.fr wrote: hello, use NAT on firewall to hide source and be sure it's ok. Your firewall should be able to manage isp redundancy directly, which would make your setup a lot easier (no use of zen) You will need to test all type of failure (mpls router down, wan behind mpls down, failback when it works again, MTU..) Cordialement, Mathieu CHATEAU http://www.lotp.fr 2015-04-14 20:17 GMT+02:00 Manish Rane manish...@gmail.com: Hi Guys, Please have a look at the diagram and let me know if I can deploy zenloadbalancer with ISP load balancing module enabled and achieve redundancy? In below scenario from Site -A 192.168.0.0/24 my primary path is always MPLS link if somehow MPLS goes down zenlb should be able to change the gateway and start pointing towards Firewall so that VPN tunnel will come up. The only point I think could cause issue about reverse route at other side lets say traffic originated from 192.168.0.0/24 desitned to 192.168.1.0 shld not come back from router it even should come back to firewall as the link is down hence wondering if I can enable this scenario using zen LB? Can you guys provide any help here or advice me? -- BPM Camp - Free Virtual Workshop May 6th at 10am PDT/1PM EDT Develop your own process in accordance with the BPMN 2 standard Learn Process modeling best practices with Bonita BPM through live exercises http://www.bonitasoft.com/be-part-of-it/events/bpm-camp-virtual- event?utm_ source=Sourceforge_BPM_Camp_5_6_15utm_medium=emailutm_campaign=VA_SF ___ Zenloadbalancer-support mailing list Zenloadbalancer-support@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/zenloadbalancer-support -- BPM Camp - Free Virtual Workshop May 6th at 10am PDT/1PM EDT Develop your own process in accordance with the BPMN 2 standard Learn Process modeling best practices with Bonita BPM through live exercises http://www.bonitasoft.com/be-part-of-it/events/bpm-camp-virtual- event?utm_ source=Sourceforge_BPM_Camp_5_6_15utm_medium=emailutm_campaign=VA_SF ___ Zenloadbalancer-support mailing list Zenloadbalancer-support@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/zenloadbalancer-support -- BPM Camp - Free Virtual Workshop May 6th at 10am PDT/1PM EDT Develop your own process in accordance with the BPMN 2 standard Learn Process modeling best practices with Bonita BPM through live exercises http://www.bonitasoft.com/be-part-of-it/events/bpm-camp-virtual- event?utm_ source=Sourceforge_BPM_Camp_5_6_15utm_medium=emailutm_campaign=VA_SF ___ Zenloadbalancer-support mailing list Zenloadbalancer-support@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/zenloadbalancer-support -- BPM Camp - Free Virtual Workshop May 6th at 10am PDT/1PM EDT Develop your own process in accordance with the BPMN 2 standard Learn Process modeling best practices with Bonita BPM through live exercises http://www.bonitasoft.com/be-part-of-it/events/bpm-camp-virtual- event?utm_ source=Sourceforge_BPM_Camp_5_6_15utm_medium=emailutm_campaign=VA_SF ___ Zenloadbalancer-support mailing list
[Zenloadbalancer-support] Can we configure below scenario with zen loadbalancing?
Hi Guys, Please have a look at the diagram and let me know if I can deploy zenloadbalancer with ISP load balancing module enabled and achieve redundancy? In below scenario from Site -A 192.168.0.0/24 my primary path is always MPLS link if somehow MPLS goes down zenlb should be able to change the gateway and start pointing towards Firewall so that VPN tunnel will come up. The only point I think could cause issue about reverse route at other side lets say traffic originated from 192.168.0.0/24 desitned to 192.168.1.0 shld not come back from router it even should come back to firewall as the link is down hence wondering if I can enable this scenario using zen LB? Can you guys provide any help here or advice me? -- BPM Camp - Free Virtual Workshop May 6th at 10am PDT/1PM EDT Develop your own process in accordance with the BPMN 2 standard Learn Process modeling best practices with Bonita BPM through live exercises http://www.bonitasoft.com/be-part-of-it/events/bpm-camp-virtual- event?utm_ source=Sourceforge_BPM_Camp_5_6_15utm_medium=emailutm_campaign=VA_SF___ Zenloadbalancer-support mailing list Zenloadbalancer-support@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/zenloadbalancer-support
Re: [Zenloadbalancer-support] Can we configure below scenario with zen loadbalancing?
Absolutely I do have that same configured on firewall only but the funny thing is since firewall is doing the rudundancy part and have tunnel configured as a backup path. The traffic originated from 192.168.0.0/24 to 1.0/24 or vice-versa being an interesting traffic or from encryption domain firewall encrypts it and puts up on MPLS link so each and every traffic is getting encrypted/decypted on MPLS link as well which is eating up my resources. -- Thanks and Regards, Manish R On Wed, Apr 15, 2015 at 12:35 AM, Mathieu Chateau mathieu.chat...@lotp.fr wrote: hello, use NAT on firewall to hide source and be sure it's ok. Your firewall should be able to manage isp redundancy directly, which would make your setup a lot easier (no use of zen) You will need to test all type of failure (mpls router down, wan behind mpls down, failback when it works again, MTU..) Cordialement, Mathieu CHATEAU http://www.lotp.fr 2015-04-14 20:17 GMT+02:00 Manish Rane manish...@gmail.com: Hi Guys, Please have a look at the diagram and let me know if I can deploy zenloadbalancer with ISP load balancing module enabled and achieve redundancy? In below scenario from Site -A 192.168.0.0/24 my primary path is always MPLS link if somehow MPLS goes down zenlb should be able to change the gateway and start pointing towards Firewall so that VPN tunnel will come up. The only point I think could cause issue about reverse route at other side lets say traffic originated from 192.168.0.0/24 desitned to 192.168.1.0 shld not come back from router it even should come back to firewall as the link is down hence wondering if I can enable this scenario using zen LB? Can you guys provide any help here or advice me? -- BPM Camp - Free Virtual Workshop May 6th at 10am PDT/1PM EDT Develop your own process in accordance with the BPMN 2 standard Learn Process modeling best practices with Bonita BPM through live exercises http://www.bonitasoft.com/be-part-of-it/events/bpm-camp-virtual- event?utm_ source=Sourceforge_BPM_Camp_5_6_15utm_medium=emailutm_campaign=VA_SF ___ Zenloadbalancer-support mailing list Zenloadbalancer-support@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/zenloadbalancer-support -- BPM Camp - Free Virtual Workshop May 6th at 10am PDT/1PM EDT Develop your own process in accordance with the BPMN 2 standard Learn Process modeling best practices with Bonita BPM through live exercises http://www.bonitasoft.com/be-part-of-it/events/bpm-camp-virtual- event?utm_ source=Sourceforge_BPM_Camp_5_6_15utm_medium=emailutm_campaign=VA_SF ___ Zenloadbalancer-support mailing list Zenloadbalancer-support@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/zenloadbalancer-support -- BPM Camp - Free Virtual Workshop May 6th at 10am PDT/1PM EDT Develop your own process in accordance with the BPMN 2 standard Learn Process modeling best practices with Bonita BPM through live exercises http://www.bonitasoft.com/be-part-of-it/events/bpm-camp-virtual- event?utm_ source=Sourceforge_BPM_Camp_5_6_15utm_medium=emailutm_campaign=VA_SF___ Zenloadbalancer-support mailing list Zenloadbalancer-support@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/zenloadbalancer-support
