TRIN KHAI LOAD BALANCING V FAILOVER CHO NHIU LINE ADSL BNG KERIO WINROUTE FIREWALL

TRIN KHAI LOAD BALANCING V FAILOVER CHO NHIU LINE ADSL BNG KERIO WINROUTE FIREWALL

I. Gii thiuVi nhu cu kt ni Internet hin nay, nu trong h thng mng ca chng ta ch c 1 ng truyn ADSL th tc truy cp internet c th b chm do ng truyn b qu ti, hoc ti 1 thi im khng th truy cp internet v ng truyn ang b mt tin hiu.

gii quyt c cc vn nu trn, trong 1 h thng mng ln ta cn c nhiu ng truyn ADSL cn bng ti (Loadbalancing) v h tr kh nng chu li (Failover) cho cc kt ni Internet

cu hnh Loadbalancing v Failover cho nhiu ng truyn Internet ta c rt nhiu gii php nh: DrayTek Vigor, Pfsense, MS ISA Server, Kerio WinRoute Firewall

Trong bi vit ny, chng ti s gii thiu vi cc bn cch cu hnh Loadbalancing v Failover cho nhiu ng truyn Internet trn Kerio WinRoute Firewall 6.5

u im ca Kerio Winroute Firewall 6.5:- Gi license khng cao, tham kho http://www.kerio.com/kwf_price.html- n gin ci t v cu hnh- H tr y cc tnh nng bo mt: AntiVirus, Traffic Policy, Content Filtering

Bi lab bao gm cc bc:1. Ci t Kerio Winroute2. Cu hnh Loadbalancing v Failover trn Kerio Winroute3. Cu hnh Traffic Rule4. Kim tra Loadbalancing v Failover

II. M hnh

IV. Thc hin1. Ci t Kerio Winroute- Ti my Server, download Kerio Winroute Firewall 6.5- Chy file ci t: kerio-kwf-whql-6.5.0-4794-win32.exe. Hp thoi Choose Setup Language chn English (United States), chn OK

- Hp thoi Welcome to the InstallShield Wizard for Kerio WinRoute Firewall 6.5.0, chn Next

- Hp thoi License Agreement, chn I accept the term in the license agreement, chn Next

- Hp thoi Setup Type, chn Complete, chn Next

- Hp thoi Destination Folder, chn Next

- Trong hp thoi Administrative Account, gi nguyn Username l Admin, nhp 123456 vo Password v Confirm Password, chn Next

- Hp thoi Remote Access, chn Next

- Hp thoi Ready to Install the Program, chn Install

- Hp thoi InstallShield Wizard Completed, chn Finish

- Khi ng li my sau khi ci t thnh cng

2. Cu hnh Loadbalancing v Failover trn Kerio WinRoute- Ti my Server, logon MSOPENLAB\Administrator, m Administration Console t Start\Programs\Kerio. Hp thoi New Connection, nhp password l 123456, chn Connect

- Trong ca s Administration Console, bung Configuration, vo Interfaces- Trong Select how the firewall is connected to the Internet, chn A Single Internet Link-Persistent- Chut phi WAN1 chn Edit

- Hp thoi Interface properties, bung Interface Group, chn Internet interfaces, chn OK

- Chut phi WAN2 chn Edit

- Hp thoi Interface properties, bung Interface Group, chn Internet interfaces, chn OK

- Chut phi LAN chn Edit

- Hp thoi Interface properties, bung Interface Group, chn Trust/Local interfaces, chn OK

- Trong ca s Interface, bung Select how the firewall is connected to the Internet, chn Multiple Internet Links-Failover- Chut phi WAN1, chn Set As Primary Link

- Chut phi WAN2, chn Set As Secondary Link

- Trong ca s Interface, bung Select how the firewall is connected to the Internet, chn Multiple Internet Links-Traffic Load Balancing- Chut phi WAN1, chn Configure Link Balancing

- Hp thoi Link Balancing, chn 2 MB/s, chn OK

- Tng t, chut phi WAN1, chn Configure Link Balancing. Hp thoi Link Balancing, chn 2 MB/s, chn OK- Trong ca s Administration Console, chn Apply

3. Cu hnh Traffic Rule- Ti my Server, trong ca s Administration Console, bung Configuration, chn Traffic Policy, chn Add

- Trong ca s Traffic Policy, chut phi New rule chn Edit rule

- Hp thoi Edit Rule, nhp Allow access internet vo Name, chn OK

- Chut phi Any ti ct Source, chn Edit source

- Hp thoi Edit Source, bung Add chn IP range, Hp thoi IP Range, nhp 172.16.1.0 vo From, nhp 172.16.1.255 vo To, chn OK

- Hp thoi Edit Source, chn OK

- Trong ca s Traffic Policy, chut phi Action ca rule Allow access internet, chn Permit

- Trong ca s Traffic Policy, chut phi Translation ca rule Allow access internet, chn Edit translation

- Trong hp thoi Edit Translations, nh du chn Enable source NAT, chn Perform load balancing per connection, chn OK

4. Kim tra Loadbalancing v Failover a. Kim tra Loadbalancing- Ti my Client, m Internet Explorer, truy cp http://msopenlab.com , kim tra truy cp thnh cng

b. Kim tra Failover- Rt line ADSL ca Router1

- Ti my Client, m Internet Explorer, truy cp http://msopenlab.com , kim tra truy cp thnh cng- Gn line ADSL cho Router1, rt line ADSL ca Router2

- Ti my Client, m Internet Explorer, truy cp http://msopenlab.com , kim tra truy cp thnh cng

Ngun : msopenlab.com