Professional Documents
Culture Documents
OF
RADWARE Link Proof Link Load Balancer &
Internet WAN Switch
MCA- DC
INFOSYS
Version1.1
Document Information
Review
Modification History
NAME …………………………………………………………………..
TITLE ……………………………………………………………………
COMPANY …………………………………………………………….
DATE ………………………………………………………………….
FOR INFOSYS
NAME …………………………………………………………………..
TITLE ……………………………………………………………………
COMPANY …………………………………………………………….
DATE ………………………………………………………………….
TABLE OF CONTENTS
Sl No. Location/Type Make / Model Device Type / Role Device Host Name
1 MCA DC Delhi Cisco 2960-S Switch FO Aggregation Switch 1 DELDCSWTAGRF01
2 MCA DC Delhi Cisco 2960-S Switch FO Aggregation Switch 2 DELDCSWTAGRF02
3 MCA DC Delhi Radware Link Proof 208 Internet Link Load Balancer 1 DELDCLLBACTF01
4 MCA DC Delhi Radware Link Proof 208 Internet Link Load Balancer 2 DELDCLLBSTBF02
WAN
WAN Switch- Switch- Connected Device
WAN Switch Interface Descriptions
01 VLAN 01 Device Interface
Interface
## Connected to Internet Router-01 LAN Internet
VLAN 101 Gi1/0/1 Interface(Gi0/0) ## Router-01 Gi0/0
VLAN 101 Gi1/0/2 ## Connected to LP-01 LAN Interface(G2) ## LP-01 G2
VLAN 102 Gi1/0/3 ## Connected to LP-01 LAN Interface(G3) ## LP-01 G3
## Connected to LP-01 LAN Interface(G1) through
VLAN 59 Gi1/0/4 DC-IPS4240 ## LP-01 G1
## Connected to Internet Router-01 LAN Internet
VLAN 22 Gi1/0/11 Interface(Gi0/3) - Management ## Router-01 Gi0/3
VLAN 22 Gi1/0/12 ## Connected to LP-01 LAN Interface(MNG1) ## LP-01 MNG1
VLAN 22 Gi1/0/22 ## Connected to DMZ SW-01 - Port 43 ## DMZSW Gi1/0/43
Trunk (59, WAN
101, 102) Gi1/0/23 ## Connected to WAN Switch-02 - Gi1/0/23 ## Switch-02 Gi1/0/23
Trunk (59, WAN
101, 102) Gi1/0/24 ## Connected to WAN Switch-02 - Gi1/0/24 ## Switch-02 Gi1/0/24
WAN
WAN Switch- Switch- Connected Device
WAN Switch Interface Descriptions
02 VLAN 02 Device Interface
Interface
## Connected to Internet Router-02 LAN Internet
VLAN 102 Gi1/0/1 Interface(Gi0/0) ## Router-02 Gi0/0
VLAN 101 Gi1/0/2 ## Connected to LP-02 LAN Interface(G2) ## LP-02 G2
VLAN 102 Gi1/0/3 ## Connected to LP-02 LAN Interface(G3) ## LP-02 G3
VLAN 59 Gi1/0/4 ## Connected to LP-02 LAN Interface(G1) ## LP-02 G1
## Connected to Internet Router-02 LAN Internet
VLAN 22 Gi1/0/11 Interface(Gi0/3) - Management ## Router-02 Gi0/3
VLAN 22 Gi1/0/12 ## Connected to LP-01 LAN Interface(MNG1) ## LP-02 MNG1
VLAN 22 Gi1/0/22 ## Connected to DMZ SW-02 - Port 43 ## DMZSW Gi2/0/43
Trunk (59, WAN
101, 102) Gi1/0/23 ## Connected to WAN Switch-02 - Gi1/0/23 ## Switch-01 Gi1/0/23
Trunk (59, WAN
101, 102) Gi1/0/24 ## Connected to WAN Switch-02 - Gi1/0/24 ## Switch-01 Gi1/0/24
Chart# IPADD-2.0
Primary Radware LP
Secondary Radware LP
Sl.
No. Networks IP Address
1 mca.gov.in 59.165.200.120
2 mca21.gov.in 59.165.200.120
3 servicedesk.mca 59.165.200.103
4 www.mca.gov.in/XBRL 59.165.200.113
5 dcdeldns2.mca.gov.in 59.165.200.3
6 vpn.mca.gov.in 59.165.200.59
Sl.
No. DNS Host IP Address
1 www.mca.gov.in 59.165.200.120
2 www.mca21.gov.in 59.165.200.120
3 servicedesk.mca.gov.in 59.165.200.103
4 www.mca.gov.in/XBRL 59.165.200.113
5 dcdeldns2.mca.gov.in 59.165.200.3
6 www.vpn.mca.gov.in 59.165.200.59
Redindancy Configuration
Existing TCIL Internet Link will be used for inbound web traffic.
Second internet Link will be used for Inbound SSL VPN traffic.
Outgoing Internet, patch management etc will use Second Internet Link.
LinkProof > Flow Management > Farms Flow Table (To Configure Flow Management)
LinkProof > Flow Management > Modify policies (To Configure Flow Policies)
LinkProof > Smart NAT > Static NAT Table (To Configure Static NAT)
DNS Changes
In coming Traffic for MCA web application will use TCIL ISP link
only.
In coming Traffic for SSL VPN access will use Bharti ISP link only.
All outgoing traffic linke patchmanagement or internet
requirement for DC ,Bharti ISP link will be used as primary and
TCIL as Backup.
Note : In case of any ISP link not available , all traffic (incoming &
outgoing ) will be through other available ISP link.
When Both 1. Nslookup the web application sites Ping Response will
Radware LB are up like www.mca.gov.in , confirm reach
and working. www.mca21.gov.in ability of Natted IP
(before migration) (14.140.191.120), address from the
servicedesk.mca.gov.in(14.140.191. internet
103)
2. Ping corresponding public ip address
static natted with with real
servers.Public ip address to ping are
to be captured.
When Both Telnet public vip ip address on port 80 Successful telnet
Radware LB are up and 53 session
and working. 14.140.191.120 –port 80 establishment will
(before migration) 14.140.191.113- port 80 confirm the
14.140.191.3 -port 53 accessibility of
application through
Radware LP.
When Both Ping both Radware physical interface ip Ping Response will
Radware LB are up address. confirm reach
and working. ability of Radware
(before migration) physical interface
and connectivity.
When Both http://www.mca.gov.in & Some Ping
Radware LB are up http://www.mca21.gov.in response and
and working. nslookup to Web
(before migration) site should have
14.140.191.120 as
ip address due to
GSLB setup. Other
ip would be of DR
Chennai ie
115.114.108.120
When Primary 1. Nslookup the web application sites Ping Response will
Radware LB like www.mca.gov.in , confirm reach
Appliance is down www.mca21.gov.in ability of Natted IP
Secondary (14.140.191.120), address from the
Radware LP is servicedesk.mca.gov.in(14.140.191. internet
passing traffic. 103)
(before migration) 2. Ping corresponding public ip address
static natted with with real
servers.Public ip address to ping are
to be captured.
When Primary Telnet public vip ip address on port 80 Successful telnet
Radware LB and 53 session
Appliance is down 14.140.191.120 –port 80 establishment will
Secondary 14.140.191.113- port 80 confirm the
Radware LP is 14.140.191.3 -port 53 accessibility of
passing traffic. application through
(before migration) Radware LP.
When Primary Ping both Radware physical interface ip Ping Response will
Radware LB address. confirm reach
Appliance is down ability of Radware
Secondary physical interface
Radware LP is and connectivity.
passing traffic.
(before migration)
When Primary http://www.mca.gov.in & Some Ping
Radware LB http://www.mca21.gov.in response and
Appliance is down nslookup to Web
Secondary site should have
Radware LP is 14.140.191.120 as
passing traffic. ip address due to
(before migration) GSLB setup. Other
ip would be of DR
Chennai ie
115.114.108.120
Table 6.1 & 6.2 test cases will be performed post migration of new
Radware devices in Internet Segment.