RAlteonware Alteon负载均衡器指导书
Radware Alteon负载均衡器配置指导书
拟 制: 审 核: 审 核: 批 准:
日 期: 日 期: 日 期: 日 期: 2013-9
RAlteonware Alteon负载均衡器指导书
修订记录
日期 2012-4-17 2012-3-4 2012-3-20 2012-3-26 2013-8-21 2013-9-22
修订版本 1.0 1.1 1.11 1.12 1.13 1.13 描述 初稿 在初稿基础上完善内容 增加NAT,vADC内容 增加L7,应用加速配置内容 修改命令行说明 增加负载均衡算法说明 作者 刘庆明 刘庆明 刘庆明 刘庆明 刘庆明 刘庆明
Radware Alteon负载均衡器指导书
目 录
Radware Alteon负载均衡器配置指导书 ........................................................................................ i 第1章 Radware Alteon负载均衡器简介 ...................................................................................... 2
1.1 Alteon产品介绍......................................................................................................................2 1.2 基本术语 .................................................................................................................................1
第2章 Alteon组网和配置流程 ..................................................................................................... 3
2.1 直连组网 .................................................................................................................................3 2.2 双臂组网 .................................................................................................................................4 2.3 单臂组网 .................................................................................................................................5 2.4 三角传输-DSR ........................................................................................................................6 2.5 配置负载均衡的基本流程 .......................................................................................................7 2.6 负载均衡的地址规划 ..............................................................................................................7 2.7 服务器地址规划 ......................................................................................................................8
第3章 Alteon基本配置 ................................................................................................................ 1
3.1 通过console线连接Alteon ....................................................................................................1 3.2 登录设备 .................................................................................................................................2 3.3 恢复出厂配置 .........................................................................................................................3 3.4 命令行登录 .............................................................................................................................3 3.5 创建管理IP ............................................................................................................................5 3.6 通过WEB页面连接 ...............................................................................................................5 3.7 确认当前设备的版本 ..............................................................................................................6 3.8 查看当前设备的License ........................................................................................................8 3.9 设备名称及Communitiy配置 .................................................................................................9 3.10 管理界面 ............................................................................................................................ 10
第4章 网络配置 ......................................................................................................................... 11
4.1 基本配置 .............................................................................................................................. 11
4.1.1 启用路由转发功能 .................................................................................................... 11 4.1.2 配置本地路由转发(可选) ........................................................................................... 11 4.1.3 设置端口名字 ............................................................................................................ 11 4.1.4 禁用和启用端口 ........................................................................................................ 12 4.1.5 物理端口速率配置 .................................................................................................... 12 4.1.6 各平台端口命名 ........................................................................................................ 14
Radware Alteon负载均衡器指导书
4.2 L2配置 ................................................................................................................................ 16
4.2.1 VLAN配置 ................................................................................................................ 16 4.2.2 802.1Q VLAN Tag配置 ............................................................................................ 18 4.2.3 生成树STP配置 ....................................................................................................... 18 4.2.4 静态端口聚合配置 .................................................................................................... 21 4.2.5 LACP配置 ................................................................................................................ 23 4.3 L3配置 ................................................................................................................................ 24
4.3.1 定义接口IP地址 ....................................................................................................... 24 4.3.2 默认网关配置 ............................................................................................................ 25 4.3.3 路由配置 ................................................................................................................... 26
第5章 标准负载均衡配置 ........................................................................................................... 26
5.1 命名规则 .............................................................................................................................. 26 5.2 全局配置 .............................................................................................................................. 26 5.3 服务器配置 .......................................................................................................................... 27
5.3.1 服务器配置说明 ........................................................................................................ 27 5.3.2 服务器多端口配置 .................................................................................................... 28 5.3.3 逻辑服务器配置 ........................................................................................................ 29 5.4 Group 配置 .......................................................................................................................... 29
5.4.1 Group 配置说明 ........................................................................................................ 29 5.4.2 负载均衡算法说明 .................................................................................................... 31 5.5 健康检查配置 ...................................................................................................................... 33
5.5.1 ICMP检查配置 ......................................................................................................... 33 5.5.2 HTTP页面检查配置 ................................................................................................. 33 5.5.3 Radius检查配置 ....................................................................................................... 34 5.5.4 自定义健康检查: .................................................................................................... 35 5.5.5 高级健康检查: ........................................................................................................ 35 5.6 Virtual Servers .................................................................................................................... 37
5.6.1 VIP配置 .................................................................................................................... 40 5.6.2 Virtual Service配置 .................................................................................................. 40
第6章 L7 Policy ......................................................................................................................... 41
6.1 传统方式 .............................................................................................................................. 41 6.2 content rule方式 ................................................................................................................. 42
6.2.1 定义content class .................................................................................................... 42 6.2.2 定义content rule ...................................................................................................... 43 6.2.3 配置实例 ................................................................................................................... 45 6.3 AppShape++ ....................................................................................................................... 45
第7章 会话保持 ......................................................................................................................... 46
7.1 L4会话保持 ......................................................................................................................... 46
Radware Alteon负载均衡器指导书
7.1.1 Pbind配置 ................................................................................................................ 47 7.1.2 PHash算法............................................................................................................... 47 7.2 L7会话保持 ......................................................................................................................... 47
7.2.1 Cookie会话保持 ....................................................................................................... 48 7.2.2 Cookie Insert配置 .................................................................................................... 48
第8章 NAT配置......................................................................................................................... 49
8.1 Dynamic NAT: .................................................................................................................. 49 8.2 Static NAT: ....................................................................................................................... 50 8.3 Proxy IP .............................................................................................................................. 51 8.4 PIP per service.................................................................................................................... 52 8.5 NAT后记录用户源IP .......................................................................................................... 52
第9章 双机配置 ......................................................................................................................... 53
9.1 主机VRRP配置 .................................................................................................................. 53
9.1.1 启用VRRP ............................................................................................................... 54 9.1.2 配置VRRP ............................................................................................................... 54 9.1.3 配置同步参数 ............................................................................................................ 56 9.1.4 Hot standyby参数 .................................................................................................... 56 9.2 备机VRRP配置 .................................................................................................................. 57 9.3 同步配置 .............................................................................................................................. 57
第10章 应用加速配置 ................................................................................................................ 57
10.1 SSL加速配置 .................................................................................................................... 58
10.1.1 创建自签名证书 ...................................................................................................... 58 10.1.2 证书导入 ................................................................................................................. 58 10.1.3 SSL Policy配置 ...................................................................................................... 58 10.2 SSL双向认证配置 ............................................................................................................. 59
10.2.1 KEY的导入............................................................................................................. 59 10.2.2 服务器证书的导入 .................................................................................................. 60 10.2.3 中间证书的导入(可选) ........................................................................................ 61 10.2.4 配置证书Group(可选) ....................................................................................... 63 10.2.5 配置相关SSL Policy............................................................................................... 64 10.2.6 配置验证客户端证书方式(可选) ......................................................................... 65 10.2.7 配置Virtual Server ................................................................................................. 68 10.3 连接复用配置 .................................................................................................................... 70
10.3.1 配置NAT ................................................................................................................ 70 10.3.2 创建复用策略 .......................................................................................................... 70 10.4 压缩配置 ............................................................................................................................ 70
10.4.1 建立Compression Policy ....................................................................................... 70