Example: Ensuring Availability in NLB Solutions

Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1, Windows Server 2003 with SP2

An organization provides VPN remote access to the organization’s users through the Internet. The organization’s design includes Network Load Balancing to eliminate any application outages and improve performance. The VPN remote access servers, running Routing and Remote Access and Windows Server 2003, reside in the organization’s perimeter network, which is located between the Internet and the organization’s private network.

The design includes ISA Server, which protects the VPN remote access servers in the perimeter network. The ISA Server servers are in a cluster (ISANLB-01) that provides load balancing and fault tolerance.

During the pilot testing of the Web content caching solution, with ISA Server, the deployment team experiences a number of outages that affect the entire solution. Figure 8.18 illustrates the Web content caching design, incorporating ISA Server, that is tested.

Figure 8.18   VPN Remote Access Test Environment

Table 8.25 lists the results of the pilot test for each portion of the design that is illustrated in Figure 8.18.

Table 8.25   Results of VPN Pilot Test

After the pilot test, the VPN remote access design is modified. Figure 8.19 illustrates the modified version of the VPN design.

Figure 8.19   Revised VPN Remote Access Design

Table 8.26 lists the design decisions that the organization makes to improve the uptime for the VPN remote access solution and the reasons for making those decisions.

Table 8.26   Improving VPN Solution Uptime Design Decisions and Their Justification