free hit counter
A10 AX Series Deployment Manual
  1. Manuals
  2. Brands
  3. A10 Manuals
  4. Switch
  5. AX Series
  6. Deployment manual

A10 AX Series Deployment Manual

Hide thumbs Also See for AX Series:
Table of Contents

Advertisement

Quick Links

See also: Deployment Manual
Deployment Guide
AX Series with
Microsoft Windows Server
2008 Terminal Services
Version: 1.1

Advertisement

Table of Contents
loading

Related Manuals for A10 AX Series

Summary of Contents for A10 AX Series

  • Page 1 Deployment Guide AX Series with Microsoft Windows Server 2008 Terminal Services Version: 1.1...

  • Page 2: Table Of Contents

    Prerequisites & Assumpti ons ......................3 AX deployment for Windows TS with RDC access ......... 4 Microsoft TS confi gurati on with the AX Series load balancer ..........5 AX confi gurati on ........................6 AX VIP status ......................... 9 AX deployment validati on ....................

  • Page 3: Introducti On

    For more information on Microsoft TS 2008, visit: http://www.microsoft.com/Windowsserver2008/en/us/ts-product-home.aspx The AX Series with its Advanced Core Operating System (ACOS) has been designed specifically for ap- plications such as TS, providing more robust response in failover situations, offloading security process- ing, and performing intelligent load sharing for all three TS access modes.

  • Page 4: Ax Deployment For Windows Ts With Rdc Access

    Deployment Guide for Microsoft Terminal Services 2008  AX deployment for Windows TS with RDC access Windows 2008 enhanced TS with a new role: Session Broker. TS Session Broker provides simple load balancing and user persistency to the TS Server. Microsoft recommends Session Broker for Terminal Server farms of two to five servers.

  • Page 5: Microsoft Ts Confi Gurati On With The Ax Series Load Balancer

    Deployment Guide for Microsoft Terminal Services 2008 Microsoft TS confi gurati on with the AX Series load balancer Note: To download a step-by-step guide for Microsoft TS, visit: http://technet.microsoft.com/en-us/library/ cc772418%28WS.10%29.aspx As explained in the Microsoft guide, to deploy with load balancers, configure the following Remote Desktop Connection Broker settings on each TS.

  • Page 6: Ax Confi Gurati On

    AX confi gurati on Note: This example shows only the required AX options. For information about other options, see the AX Series Configuration Guide, the AX Series GUI Reference, or the GUI online help. AX configuration steps: 1. Create a real server for each TS. Enter the TS name and IP address, and add TCP port 3389.
  • Page 7 Deployment Guide for Microsoft Terminal Services 2008 ◦ Via Web GUI: Confi g Mode > Service > SLB > Service Group ◦ Via CLI: AX(confi g)#slb service-group TS-Farm tcp AX(confi g-slb svc group)#member TS1:3389 AX(confi g-slb svc group)#member TS2:3389 3. Create the virtual IP address (VIP), which is the IP address that clients will access. a.

  • Page 8: Performance By Design

    Deployment Guide for Microsoft Terminal Services 2008 ◦ Via Web GUI: Confi g Mode > Service > SLB > Virtual Server > Port ◦ Via CLI: AX(confi g-slb vserver)#port 3389 tcp AX2(confi g-slb vserver-vport)#service-group TS-Farm 4. Create an aFleX policy, to defi ne the TS persistence rule: when CLIENT_ACCEPTED { # Collect client packet only if there is at least 30 bytes # (If there is no routing token =>...

  • Page 9: Ax Vip Status

    Deployment Guide for Microsoft Terminal Services 2008 ◦ Via Web GUI: Confi g Mode > Service > aFleX ◦ Via CLI: AX(confi g)#import afl ex TS-persist tftp://172.31.31.12/TS-persist 5. Assign the aFleX policy to the virtual server. ◦ Via Web GUI: Confi g Mode > Service > SLB > Virtual Server > Port ◦...

  • Page 10: Ax Deployment Validati On

    Deployment Guide for Microsoft Terminal Services 2008 AX deployment validati on To validate the AX deployment: 1. Verify that clients can access the TS farm using RDP access via the VIP: ◦ Launch RDP (mstsc.exe) and connect to the VIP. ◦...
  • Page 11 Deployment Guide for Microsoft Terminal Services 2008 ◦ Open an application (for instance, “Notepad”) and close the RDP session without logging out from the TS. ◦ Establish a new RDP connection (from the same PC or another one) and log in with the same user.

  • Page 12: Ax Deployment For Windows Ts With Rdc With Tsg Access

    Deployment Guide for Microsoft Terminal Services 2008  AX deployment for Windows TS with RDC with TSG access Windows 2008 enhanced its TS with a new role: Gateway. TS Gateway provides RDP connection over HTTPS. The Gateway role enables remote end-users to access the TS farm, even when the RDP proto- col is blocked by a firewall and only HTTP/HTTPS is authorized.
  • Page 13 Deployment Guide for Microsoft Terminal Services 2008 As explained in the Microsoft guide, to deploy with load balancers, configure the following settings on each TS Gateway. (Navigate to Administrative Tools > Remote Desktop Services > Remote Desktop Gateway Manager – Edit Properties / Server Farm.) When deployed with load balancers configured with no TS Gateway SSL offload, use the same server certificate for the following on all TS Gateways: •...

  • Page 14: Ax Confi Gurati On

    SSL on TS Gateway, see the “No SSL Offload Note” in each step. Note: This example shows only the required AX options. For information about other options, see the AX Series Configuration Guide, the AX Series GUI Reference, or the GUI online help. AX configuration steps: 1.
  • Page 15 Deployment Guide for Microsoft Terminal Services 2008 ◦ Via Web GUI: Confi g Mode > Service > SLB > Server ◦ Via CLI: AX(confi g)#slb server TSG1 10.0.2.8 AX(confi g-real server)#port 80 tcp 2. Create a service group for the TS Gateway farm. Enter a name for the service group, and select TCP from the Type drop-down list.
  • Page 16 Enter or select download settings. (These depend on whether you select Local or Remote.) ◦ Via Web GUI: Confi g Mode > Service > SSL Management > Certifi cate ◦ Via CLI: AX(confi g)#slb ssl-load certifi cate TSG-Cert type pfx password a10 tftp://10.0.1.10/tsgw2.pfx Performance by Design...
  • Page 17 ◦ Via CLI: AX(confi g)#slb template client-ssl TSG-Cert-template AX(confi g-client ssl)#cert TSG-Cert AX(confi g-client ssl)#key TSG-Cert passphrase a10 5. Assign the client-SSL template to the virtual server port. No SSL Offl oad Note: Skip this step. ◦ Via Web GUI: Confi g Mode > Service > SLB > Virtual Server > Port ◦...

  • Page 18: Ax Vip Status

    Deployment Guide for Microsoft Terminal Services 2008 AX VIP status Display the status of the VIP and its members: 1. Via Web GUI: Confi g Mode > Service > SLB > Virtual Server 2. Via CLI: AX#show slb virtual-server TS AX#show slb service-group TSG-Farm AX#show slb server [TSG1 | TSG2] Performance by Design...

  • Page 19: Ax Deployment Validati On

    Deployment Guide for Microsoft Terminal Services 2008 AX deployment validati on To validate the AX deployment: 1. Verify that clients can access the Terminal Servers using RDP with TSG access via the VIP: ◦ Launch RDP (mstsc.exe) and connect to the TS with the TSG option confi gured. (Navigate to Options –...

  • Page 20: Ax Deployment For Windows Ts With Web Access

    Deployment Guide for Microsoft Terminal Services 2008  AX deployment for Windows TS with Web access Windows 2008 enhanced TS with a new role: Web Access. TS Web Access provides web access to distributed applications on TS. End customers access the web portal that provides the list of distributed applications on TS. Then they connect to these applications via RDP to the TS.

  • Page 21: Ax Confi Gurati On

    The steps below detail AX configuration for TS Web Access. Note: This example shows only the required AX options. For information about other options, see the AX Series Configuration Guide, the AX Series GUI Reference, or the GUI online help. AX configuration steps: 1.
  • Page 22 Deployment Guide for Microsoft Terminal Services 2008 2. Create a service group for the TS Gateway farm. ◦ Via Web GUI: Confi g Mode > Service > SLB > Service Group ◦ Via CLI: AX(confi g)#slb service-group TSW-Farm tcp AX(confi g-slb svc group)#member TSW1:443 AX(confi...
  • Page 23 Deployment Guide for Microsoft Terminal Services 2008 b. Add the HTTPS port and select the service group. ◦ Via Web GUI: Confi g Mode > Service > SLB > Virtual Server > Port ◦ Via CLI: AX(confi g-slb vserver)#port 443 tcp AX2(confi...

  • Page 24: Ax Vip Status

    Deployment Guide for Microsoft Terminal Services 2008 AX VIP status Display the status of the VIP and its members: 1. Via Web GUI: Confi g Mode > Service > SLB > Virtual Server 2. Via CLI: AX#show slb virtual-server TS AX#show slb service-group TSW-Farm AX#show slb server [TSW1 | TSW2] AX deployment validati on...

  • Page 25: Summary And Conclusion

    Deployment Guide for Microsoft Terminal Services 2008  Summary and Conclusion The AX Series Advanced Traffic Manager provides Windows Server 2008 Terminal Services load bal- ancing with: • High availability • High scalability • High fl exibility • High performance •...
  • Page 26 About A10 Networks A10 Networks was founded in 2004 with a mission to provide innovative networking and security solutions. A10 Networks makes high-performance products that help organizations accelerate, optimize and secure their applications. A10 Networks is headquartered in Silicon Valley with offi ces in the United States, Europe, Japan, China, Korea and Taiwan.

Table of Contents