Virtual DMZ with Multi-WAN for NetScaler AAGEE Multi-Tenant (above your pay grade)

Virtual DMZ with Multi-WAN

Research on how to create a virtual DMZ with Mutli-WAN (Multiple Internet Connections) for Inbound and Outband traffic.

The theory is that a user will hit a url called https://access.* which will have multiply A records pointing Public IP Address that are provided by different Internet Service Providers with NAT to the Datacenter Router, that are forwarded to virtual VIF. Setup a Subdomain with a HTML forwarder to a Dynamic DNS or Public IP address.

  1. Subdomain HTML
  2. <!DOCTYPE HTML>
     <html lang="en-US">
     <head>
     <meta charset="UTF-8">
     <meta http-equiv="refresh" content="1;url=DOMAIN.com">
     <script type="text/javascript">
     window.location.href = "http://DOMAIN.com"
     </script>
     <title>Page Redirection</title>
     </head>
     <body>
     <!-- Note: don't tell people to `click` the link, just tell them that it is a link. -->
     If you are not redirected automatically, follow the <a href='unitycloud.com'>link to example</a>
     </body>
     </html>
    
  3. Domain name Round Robin with public IP address for each Internet connection
  4. ZoneEdit Failover – http://www.zoneedit.com/failover.html
  5. Cisco 1841
  6. Vyatta or pfSense configure Multi-WAN
  7. Active/Active NetScaler GSLB with Proximity and Site Roaming – http://support.citrix.com/servlet/KbServlet/download/28997-102-681498/XD%20-%20High%20Availability%20-%20Implementation%20Guide%20v2-2.pdf
  8. AAGEE vServer for Multi-Tenancy customer1.*** customer2.**
  9. IP, VM NICs and Switch Configuration Requirements
  10. Data Replication – Synchronous
  11. VM Replication – Asynchronous
  12. Data Backup (email/file)
  13. Data Archiving Cloud

 

Reference Active/Active Design