1. Manuals
  2. Brands
  3. Novell Manuals
  4. Software
  5. ACCESS MANAGER 3.1 SP1 - SSL VPN SERVER GUIDE...
  6. Manual

Configuring Ssl Vpn To Monitor Health Of Cluster; Services Of The Real Server; A Note About Alteon Switches; Real Server Settings Example - Novell ACCESS MANAGER 3.1 SP1 - SSL VPN SERVER GUIDE 03-17-2010 Manual

Ssl vpn server guide
Hide thumbs
Table of Contents

Advertisement

Configuring SSL VPN to Monitor
2 4
Health of Cluster
The L4 servers use health checks to determine which cluster members are ready to receive requests
and which cluster members are unhealthy and should not receive requests. You need to configure the
L4 server to monitor the heartbeat URL of the Identity Servers and Access Gateways, so that the L4
server can use this information to accurately update the health status of each cluster member.
Section 24.1, "Services of the Real Server," on page 135
Section 24.2, "Monitoring the SSL VPN Server Health," on page 136

24.1 Services of the Real Server

A user's authentication resides on the real (authentication) server cluster member that originally
handled the user's authentication. If this server malfunctions, all users whose authentication data
resides on this cluster member must reauthenticate.
Requests that require user authentication information are processed on this server. When the system
identifies a server as not being the real server, the HTTP request is forwarded to the appropriate
cluster member, which processes the request and returns it to the requesting server.
Section 24.1.1, "A Note about Alteon Switches," on page 135
Section 24.1.2, "Real Server Settings Example," on page 135
Section 24.1.3, "Virtual Server Settings Example," on page 136

24.1.1 A Note about Alteon Switches

When configuring an Alteon* switch for clustering, direct communication between real servers must
be enabled. If direct access mode is not enabled and one of the real servers tries to proxy another real
server, the connection fails and times out.
To enable direct communication on an Alteon switch:
1 Go to cfg > slb > adv > direct.
2 Specify e to enable direct access mode.
With some L4 switches, you should configure only the services that you are using. For example, if
you configure the SSL service for the L4 and you have not configured SSL in Access Manager, then
the HTTP service on the L4 does not work. If the health check for the SSL service fails, the L4
assumes that all the services configured to use the same virtual IP are down.

24.1.2 Real Server Settings Example

Configuring SSL VPN to Monitor Health of Cluster

24
135

Advertisement

Table of Contents
loading

Related Manuals for Novell ACCESS MANAGER 3.1 SP1 - SSL VPN SERVER GUIDE 03-17-2010

Related Content for Novell ACCESS MANAGER 3.1 SP1 - SSL VPN SERVER GUIDE 03-17-2010

This manual is also suitable for:

Access manager 3.1 sp1

Table of Contents