Scribd
Upload
223 views4 pages

A10 ADC Lab 6 GSLB

Uploaded by

Chun-Kai Huang
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
223 views4 pages

A10 ADC Lab 6 GSLB

Uploaded by

Chun-Kai Huang
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 4

ADC Lab 6

GSLB
Lab 8 Overview
In this lab you will configure GSLB on an ACOS device then replicate the configuration to an
additional device.
Commands listed in the steps do not show prompt or privilege level necessary to execute
them. You should use the lowest privilege necessary. Use “?” when needed.
It is advised that you follow the naming conventions in the lab. Should you prefer to use
your own naming convention, make sure it is consistent throughout the configuration.

Prepare Windows
1. Change the DNS Server address (10.254.251.X+8) to Windows Client (Classmate’s PC).
Navigate to Network and Sharing Center (Control Panel > Network and Sharing Center)
Open Data Status panel (click Data)
Open Data Properties panel (click Properties)
Select Internet Protocol Version 4 (TCP/IPv4) and click Properties
In the Preferred DNS server field, enter the 100.0.0.53
Click OK > Close > Close, then close the Network and Sharing Center.
2. Open a new Bash Shell and confirm DNS is not functional.
nslookup www.a10.test
The shell should display an error message.
Configuring GSLB Master
3. Log in to the master, create and enable the VIP for GSLB client DNS queries:
slb virtual‐server DSN1 10.254.251.X+6)
port 53 dns‐udp
gslb‐enable
4. Back at the config level, add the Service IPs with appropriate ports
gslb service‐ip VIP‐HTTP 10.254.251.x+5
port 80 tcp
gslb service‐ip VIP‐HTTP2 10.254.251.Nx+3 (同組學員的 VIP)
port 80 tcp
gslb service‐ip VIP‐SSL 10.254.251.x+7
port 80 tcp
port 443 tcp
gslb service‐ip VIP‐SSL2 10.254.251.Nx+7 (同組學員的 VIP)
port 443 tcp
port 80 tcp
5. Define the sites, slb devices and the vip servers
gslb site local
slb‐dev A1 10.254.251.X+9 (ve100 IP)
vip‐server VIP‐HTTP
vip‐server VIP‐SSL
gslb site remote
slb‐dev A2 10.254.251.NX+9 (同組學員的A10 ve100 IP)
vip‐server VIP‐HTTP2
vip‐server VIP‐SSL2
6. Define a policy to put GSLB into Server Mode and disable the geographic metric as it
does not work properly in this lab environment.
gslb policy gslb‐TP‐POL1
no geographic
dns server authoritative
7. Define the zone, add the policy and services and vips:
gslb zone a10.test
policy gslb‐TP‐POL1
service 80 www
dns‐a‐record VIP‐HTTP static
dns‐a‐record VIP‐HTTP2 static
service 443 ssl
dns‐a‐record VIP‐SSL static
dns‐a‐record VIP‐SSL2 static
8. Enable the GSLB protocol and define A1 as a Controller:
gslb protocol enable controller
9. Confirm functionality of your GSLB setup, open another Bash window and try resolving
the names you created.
nslookup www.a10.test
nslookup ssl.a10.test
Hit the up arrow a few times for each nslookup statement. The addresses alternate
between queries as round robin directs traffic between the VIPs.
10. Make sure both vips are available by name through the browser:
http://www.a10.test/
https://ssl.a10.test/
http://ssl.a10.test/ (To test Transparent Redirect)
Create a Controller Group and add an additional Controller
(請同組學員,完成上步驟後,清除 GSLB 設定)
11. Create the Controller Group on A1:
gslb group default
priority 200
primary 10.254.251.X+9
enable
12. Confirm A4 has no GSLB configuration, log on as admin and run the following:
show run | sec gslb
There should be no configuration. Note that to clear an existing GSLB configuration in
ACOS, use the gslb system reset command.
13. Create DNS vip on A2:
slb virtual‐server DNS2 10.254.251.NX+8 (同組學員 X+8 IP)
port 53 dns‐udp
gslb‐enable
14. Enable A4 as a GSLB Controller and bind it to the Default group:
gslb protocol enable controller
gslb group default
primary 10.254.251.NX (ve100 IP)
enable
15. Confirm A4 replicated the GSLB configuration from A1.
show run | sec gslb
The output should include the GSLB configuration
The prompt should change to A2‐gslb:Member#
16. Change the Windows DNS IP address to 10.254.251.NX+8 (matches the dns vip IP address).
Navigate to Network and Sharing Center (Control Panel > Network and Sharing Center)
Open Data Status panel (click Data)
Open Data Properties panel (click Properties)
Select Internet Protocol Version 4 (TCP/IPv4) and click Properties
Preferred DNS server enter the 10.254.251.NX+8
Click OK > Close > Close, then close the Network and Sharing Center.
17. Confirm the GSLB functionality: open another Bash window and resolve the names you
created.
nslookup www.a10.test
nslookup ssl.a10.test
Hit the up arrow a few times for each nslookup statement. The addresses alternate
between queries as round robin directs traffic between the VIPs.
18. Make sure both vips are available by name through the browser:
http://www.a10.test/
https://ssl.a10.test/
http://ssl.a10.test/ (To test Transparent Redirect)

You might also like