Setting up ‘virtual’ FQDN for failover system

Solved1.42K viewsFailover FQDN HTTPS IIS
3
0 Comments

I’m looking for some input to properly set up a failover system.

  • Each DMA has been configured for HTTPS
  • A wildcard certificate (eg *.dataminer.company.com) – issued by a trusted certificate authority – has been installed on each DMA
  • In IIS, the certificate has a binding to the FQDN of the DMA (which matches with the wildcard certificate (eg dma01m.dataminer.company.com)
  • In IIS, HTTP traffic is configured to be automatically redirected to HTTPS

This all works fine. We can reach all main/backup DMA’s over HTTPS, and the certificate is correctly validated.

I was wondering what steps need to be taken in case we want to set up a ‘virtual’ FQDN for such failover pair?

Imagine that we have dma01m and dma01b configured as failover pair, and we’d like to use dma01.dataminer.company.com to access the online agent, in a similar way as a regular virtual IP would.

How could this be achieved?

Thanks!

Ruben Vandepitte [SLC] [DevOps Advocate] Edited question 4th November 2020

1 Answer

4
8.29K 1 Comment

Hi Ruben,

The ‘virtual’ FQDN would need to be a DNS record converting dma01.dataminer.company.com to the Virtual IP address of that failover pair.

And then you make sure both servers also have a binding in IIS accepting this URL with that certificate.

I guess that should work, but you need that DNS record added on the DNS server of that environment…

Bert

Ruben Vandepitte [SLC] [DevOps Advocate] Selected answer as best 4th November 2020
Ruben Vandepitte [SLC] [DevOps Advocate] commented

Thanks Bert, that’s clear. Will give it a try.