using a single IP Policy object, in Example 10.4, “Setting up SLB with IP Rules”.
Command-Line Interface
A. Create an address object for each of the web servers:
gw-world:/> add Address IP4Address server1 Address=192.168.1.10
gw-world:/> add Address IP4Address server2 Address=192.168.1.11
B. Create an IP4Group which contains the 2 web server addresses:
gw-world:/> add Address IP4Group server_group Members=server1,server2
C. Specify the SLB_SAT IP rule:
gw-world:/> add IPRule Action=SLB_SAT
SourceInterface=any
SourceNetwork=all-nets
DestinationInterface=core
DestinationNetwork=wan_ip
Service=http-all
SLBAddresses=server_group
Name=web_slb
D. Specify a NAT rule for internal clients access to the servers:
gw-world:/> add IPRule Action=NAT
SourceInterface=lan
SourceNetwork=lan-net
DestinationInterface=core
DestinationNetwork=wan_ip
Service=http-all
NATAction=UseInterfaceAddress
Name=web_slb_nat
E. Specify an Allow IP rule for the external clients:
gw-world:/> add IPRule Action=Allow
SourceInterface=wan
SourceNetwork=all-nets
DestinationInterface=core
DestinationNetwork=wan_ip
Service=http-all
NATAction=UseInterfaceAddress
Name=web_slb_allow
Web Interface
A. Create an Object for each of the web servers:
1. Go to: Objects > Address Book > Add > IP4 Address
2. Enter a suitable name, for example server1
3. Enter the IP Address as 192.168.1.10
4. Click OK
Chapter 10: Traffic Management
814
To Next Page
Loading...
