Résumé du contenu de la page N° 1
Web OS Switch Software
10.0 Application Guide
Part Number: 212777, Revision A, February 2002
50 Great Oaks Boulevard
San Jose, California 95119
408-360-5500 Main
408-360-5501 Fax
www.nortelnetworks.com
Résumé du contenu de la page N° 2
Web OS 10.0 Application Guide Copyright 2002 Nortel Networks, Inc., 50 Great Oaks Boulevard, San Jose, California 95119, USA. All rights reserved. Part Number: 212777, Revision A. This document is protected by copyright and distributed under licenses restricting its use, copying, distribution, and decompilation. No part of this document may be reproduced in any form by any means without prior written authorization of Nortel Networks, Inc. Documentation is provided “as is” without warranty of
Résumé du contenu de la page N° 3
Contents Preface 21 Who Should Use This Guide 21 What You’ll Find in This Guide 21 Typographic Conventions 23 Contacting Us 24 Part 1: Basic Switching & Routing Chapter 1: Basic IP Routing 27 IP Routing Benefits 28 Routing Between IP Subnets 28 Example of Subnet Routing 31 Defining IP Address Ranges for the Local Route Cache 35 Border Gateway Protocol (BGP) 36 Internal Routing Versus External Routing 36 Forming BGP Peer Routers 37 BGP Failover Configuration 37 DHCP Relay 41 DHCP Overview 41 DHCP
Résumé du contenu de la page N° 4
Web OS 10.0 Application Guide VLANs and Spanning Tree Protocol 49 Bridge Protocol Data Units (BPDUs) 50 Multiple Spanning Trees 51 VLANs and Default Gateways 58 Segregating VLAN Traffic 58 Configuring the Local Network 60 Configuring Default Gateways per VLAN 60 VLANs and Jumbo Frames 63 Isolating Jumbo Frame Traffic using VLANs 63 Routing Jumbo Frames to Non-Jumbo Frame VLANs 64 Chapter 3: Port Trunking 65 Overview 65 Statistical Load Distribution 66 Built-In Fault Tolerance 66 Port Trunking Ex
Résumé du contenu de la page N° 5
Web OS 10.0 Application Guide OSPF Configuration Examples 83 Example 1: Simple OSPF Domain 84 Example 2: Virtual Links 86 Example 3: Summarizing Routes 90 Example 4: Host Routes 92 Verifying OSPF Configuration 98 Chapter 5: Secure Switch Management 99 Setting Allowable Source IP Address Ranges 100 Secure Switch Management 101 Authentication and Authorization 101 Requirements 102 RADIUS Authentication and Authorization 103 RADIUS Authentication Features in Web OS 104 Web Switch User Accounts 105
Résumé du contenu de la page N° 6
Web OS 10.0 Application Guide Load Balancing Special Services 149 IP Server Load Balancing 149 FTP Server Load Balancing 150 Domain Name Server (DNS) Load Balancing 151 Real Time Streaming Protocol SLB 155 Wireless Application Protocol SLB 158 Intrusion Detection System Server Load Balancing 163 WAN Link Load Balancing 166 Chapter 7: Filtering 169 Overview 170 Filtering Benefits 170 Filtering Criteria 170 Stacking Filters 172 Overlapping Filters 172 The Default Filter 173 VLAN-based Filtering 17
Résumé du contenu de la page N° 7
Web OS 10.0 Application Guide Chapter 8: Application Redirection 203 Overview 204 Web Cache Redirection Environment 204 Additional Application Redirection Options 205 RTSP Web Cache Redirection 211 IP Proxy Addresses for NAT 213 Excluding Noncacheable Sites 215 Chapter 9: Virtual Matrix Architecture 217 Chapter 10: Health Checking 219 Real Server Health Checks 221 DSR Health Checks 222 Link Health Checks 223 Configuring the Switch for Link Health Checks 223 TCP Health Checks 224 ICMP Health Chec
Résumé du contenu de la page N° 8
Web OS 10.0 Application Guide Chapter 11: High Availability 247 VRRP Overview 248 VRRP Components 248 VRRP Operation 251 Selecting the Master VRRP Router 251 Active-Standby Failover 252 Failover Methods 253 Active-Standby Redundancy 254 Active-Active Redundancy 255 Hot-Standby Redundancy 256 Synchronizing Configurations 258 Web OS Extensions to VRRP 259 Virtual Server Routers 259 Sharing/Active-Active Failover 260 Tracking VRRP Router Priority 261 High Availability Configurations 263 Active-Stan
Résumé du contenu de la page N° 9
Web OS 10.0 Application Guide Part 3: Advanced Web Switching Chapter 12: Global Server Load Balancing 289 GSLB Overview 290 Benefits 290 Compatibility with Other Web OS Features 290 How GSLB Works 291 Configuring GSLB 293 IP Proxy for Non-HTTP Redirects 304 How IP Proxy Works 305 Configuring Proxy IP Addresses 307 Verifying GSLB Operation 308 Configuring Client Site Preferences 308 Using Border Gateway Protocol for GSLB 312 Chapter 13: Firewall Load Balancing 313 Firewall Overview 314 Basic FWLB
Résumé du contenu de la page N° 10
Web OS 10.0 Application Guide Chapter 15: Content Intelligent Switching 371 Overview 372 Parsing Content 373 HTTP Header Inspection 374 Buffering Content with Multiple Frames 374 Content Intelligent Server Load Balancing 375 URL-Based Server Load Balancing 375 Virtual Hosting 380 Cookie-Based Preferential Load Balancing 383 Browser-Smart Load Balancing 386 URL Hashing for Server Load Balancing 387 Header Hash Load Balancing 389 DNS Load Balancing 390 Layer 7 RTSP Load Balancing 392 Content Intel
Résumé du contenu de la page N° 11
Web OS 10.0 Application Guide Chapter 16: Persistence 421 Overview of Persistence 422 Using Source IP Address 422 Using Cookies 423 Using SSL Session ID 423 Cookie-Based Persistence 424 Permanent and Temporary Cookies 425 Cookie Formats 425 Cookie Properties 426 Client Browsers that Do Not Accept Cookies 426 Cookie Modes of Operation 427 Configuring Cookie-Based Persistence 430 Server-Side Multi-Response Cookie Search 436 SSL Session ID-Based Persistence 437 How SSL Session ID-Based Persistence
Résumé du contenu de la page N° 12
Web OS 10.0 Application Guide Configuring Bandwidth Management 454 Additional Configuration Examples 457 Preferential Services Examples 460 Glossary 471 Index 475 12 n Contents 212777-A, February 2002
Résumé du contenu de la page N° 13
Figures Figure 1-1: The Router Legacy Network 29 Figure 1-2: Switch-Based Routing Topology 30 Figure 1-3: iBGP and eBGP 37 Figure 1-4: BGP Failover Configuration Example 38 Figure 1-5: DHCP Relay Agent Configuration 42 Figure 2-1: Example 1: Multiple VLANs with Tagging Gigabit Adapters 46 Figure 2-2: Example 2: Parallel Links with VLANs 48 Figure 2-3: Using Multiple Instances of Spanning Tree Protocol 51 Figure 2-4: VLAN 3 Isolated in a Single Spanning Tree Group 52 Figure 2-5: Implementing Mult
Résumé du contenu de la page N° 14
Web OS 10.0 Application Guide Figure 6-1: Traditional Versus SLB Network Configurations 119 Figure 6-2: Web Hosting Configuration Without SLB 121 Figure 6-3: Web Hosting with SLB Solutions 121 Figure 6-4: SLB Client/Server Traffic Routing 122 Figure 6-5: Example Network for Client/Server Port Configuration 123 Figure 6-6: Basic Virtual Port to Real Port Mapping Configuration 140 Figure 6-7: Direct Server Return 143 Figure 6-8: Mapped and Nonmapped Server Access 144 Figure 6-9: DoS SYN Attacks wi
Résumé du contenu de la page N° 15
Web OS 10.0 Application Guide Figure 12-1: DNS Resolution with Global Server Load Balancing 291 Figure 12-2: GSLB Topology Example 294 Figure 12-3: HTTP and Non-HTTP Redirects 304 Figure 12-4: POP3 Request Fulfilled via IP Proxy 305 Figure 12-5: GSLB Proximity Tables: How They Work 309 Figure 12-6: Configuring Client Proximity Table 310 Figure 13-1: Typical Firewall Configuration Before FWLB 314 Figure 13-2: Basic FWLB Topology 316 Figure 13-3: Basic FWLB Process 317 Figure 13-4: Basic FWLB Exam
Résumé du contenu de la page N° 16
Web OS 10.0 Application Guide Figure 17-1: Bandwidth Management: How It Works 442 Figure 17-2: Bandwidth Rate Limits 444 Figure 17-3: Virtual Clocks and TDT 446 Figure 17-4: URL-Based Bandwidth Management 450 Figure 17-5: URL-Based Bandwidth Management with Web Cache Redirection 450 Figure 17-6: Cookie-Based Bandwidth Management 451 Figure 17-7: Cookie-Based Preferential Services 467 16 n Figures 212777-A, February 2002
Résumé du contenu de la page N° 17
Tables Table 1-1: Subnet Routing Example: IP Address Assignments 31 Table 1-2: Subnet Routing Example: IP Interface Assignments 31 Table 1-3: Subnet Routing Example: Optional VLAN Ports 33 Table 1-4: Local Routing Cache Address Ranges 35 Table 2-1: Ports, Trunk Groups, and VLANs 49 Table 2-2: Multiple Spanning Tree Groups per VLAN 54 Table 2-3: Route Cache Example 59 Table 5-1: User Access Levels 105 Table 5-2: Web OS Alteon Levels 106 Table 6-1: Web Host Example: Real Server IP Addresses 124 Ta
Résumé du contenu de la page N° 18
Web OS 10.0 Application Guide Table 12-1: GSLB Example: California Real Server IP Addresses 296 Table 12-2: GSLB Example: California Alteon 180 Port Usage 297 Table 12-3: Denver Real Server IP Addresses 300 Table 12-4: Web Host Example: Alteon 180 Port Usage 301 Table 12-5: HTTP Versus Non-HTTP Redirects 305 Table 15-1: Standard Regular Expression Special Characters 412 Table 15-2: Real Server Content 416 Table 16-1: Comparison Among the Three Cookie Modes 427 Table 17-1: Bandwidth Rate Limits 4
Résumé du contenu de la page N° 19
New Features The following table lists the new features in Web OS 10.0 and the supported platforms: Feature Alteon Web Switches Alteon Web Switches AD3/180e AD4/184 Vlan-based default gateway No Yes Vlan Filtering No Yes Multiple Instances of Spanning Tree Yes Yes Layer 7 deny filter Yes Yes Increase real server support to 1024 No Yes SYN Attack Detection/Protection Yes Yes Enhanced Port Mirroring Yes Yes Reporting Classification Manager: SYSLOG and No Yes SNMP Reporting Classification Manager:
Résumé du contenu de la page N° 20
Web OS 10.0 Application Guide Feature Alteon Web Switches Alteon Web Switches AD3/180e AD4/184 Hash on any HTTP header Yes Yes Increase support of 16 rport to vport No Yes Increased number of scripted health check to 16 No Yes Descriptive names for filters Yes Yes OSPF No Yes LDAP health check Yes Yes Streaming Cache Redirection Yes Yes L7 Parsing of RTSP SLB Yes Yes ARP health check Yes Yes Telnet client Yes Yes Increase logging buffer Yes Yes Support of OPER command on Web OS BBI and No Yes SN