Forum Discussion
NimbostratusGTM Design help
Guys,
Hope you are all doing well! I'm after a bit of advice with our new GTM setup - basically we are building two DC's with a GTM on each and 2 LTM's behind them at each DC.
Again I'm confused with F5's wording of the documents and was wondering if you could help decipher it for me - basically I was wondering with an active/standby GTM design - is it possible between DC's? Would it be better to run an active/active pair and load share between the two facilities?
Our plan is to put the GTM's within our DMZ at each DC and route back into our corporate network via our firewall. Each GTM will become the nameserver for our external DNS domain.
Now this is also going to get confusing - we've noticed most setups have dual ISP's with two IP ranges but we have only one ISP with two seperate internet pipes and two IP ranges which we require to have one range active at each DC with failover at the opposite DC.
Sorry about being vague but I've hit a hard wall here and looking for some suggestions or if anyone can share their design...obviously ommitting any company details etc
Thanks for reading.
Thomas.
3 Replies
Sec-Enabled_658Cirrostratus
Typically I have seen companies having 1 GTM in DCA and 1 GTM in DCB. Both GTMs are in the same sync group so any changes on 1 is automatically synced to the other.
If you wanted to, you could use a active/standby pair of GTMs in each datacenter, but I would not suggest an Active/active pair in each datacenter.
As far as the dual IP ranges, wondering if you could just have a listener on each IP range per GTM. Then you NS records should point to all four listeners on your GTM's (2 listeners on GTMA in DCA and 2 listeners on GTMB in DCB)
Josh_41258Here is one way to handle it:
Place a GTM at each of your datacenters. These two GTM's will be in the same sync group and will both be able to answer DNS requests. You don't necessarily have to make the GTM's authoritative for your entire domain if you do not want to. You can make it authoritative for individual records or subdomains, i.e:
www.domain.com IN NS gtm-dc1
www.domain.com IN NS gtm-dc2
Therefore, either GTM-DC1 or GTM-DC2 will answer DNS queries for www.domain.com. Because the GTM's are in sync (sync-group) they will both answer with the appropriate response (send client to DC1, or DC2 depending on your GTM configuration). The fact that you have one ISP with multiple external networks does not matter. The GTM will answer the DNS query based on logic that you configure within the GTM.
Your GTM's will be active/active in the sense that they will both answer DNS queries at all times, however GTM-DC2 can and will answer queries and direct users to DC1 if it needs to.
Hope this helps.
Thomas_McLean_1Thanks for the replies guys - I am going to give it a whirl in the VE's and see how I get on next week - I shall update the post with my findings.
Thanks
