Trisul Network Analytics
Developer Zone

User Tools

Site Tools

You are here: Home » ha » HA mode using Keepalived
Trace:
ha:keepalived

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
Next revisionBoth sides next revision
ha:keepalived [2023/07/18 18:09] – [Keepalived] veeraha:keepalived [2023/07/18 18:39] – [3. Use IPTABLES on MASTER] veera
Line 24: Line 24:
  
  
-==== 1Install Trisul Network Analytics on both HA DR nodes. ====+==== 2Configure keepalived on both MASTER and SLAVE ==== 
 + 
 +Follow instructions in [[admin:keepalived|Configure keepalived]] 
 +==== 3Use IPTABLES on MASTER ==== 
 + 
 + 
 +During normal operation both nodes will be in active-active mode. The NETFLOW sent to the MASTER node will be mirrored to the SLAVE node using IPTABLES rule. You can also use the [[https://github.com/trisulnsm/netflow-shim-tunnel|netflow-shim-tunnel]] to accomplish this 
  
 iptables DNAT rule iptables DNAT rule
Line 34: Line 41:
  
 <code> <code>
-iptables -t nat -A PREROUTING -p udp -m udp --dport 2055 -j DNAT --to-destination 10.10.100.116+iptables -t nat -A PREROUTING 
 +    -p udp -m udp --dport 2055 -j DNAT 
 +        --to-destination 10.10.100.116
  
 systemctl start iptables systemctl start iptables
Line 48: Line 57:
 iptables-save > /etc/sysconfig/iptables iptables-save > /etc/sysconfig/iptables
 </code> </code>
 +
 +
 +To list the NAT rule 
 +
 +<code>
 +iptables -t nat -v -L -n --line-number 
 +</code>
 +
 +
 +To delete (for testing) 
 +
 +<code>
 +iptables -t nat -D PREROUTING 1
 +</code>
 +
  
  
ha/keepalived.txt · Last modified: 2023/07/18 18:40 by veera