Before you can configure and deploy a high availability Branch Server pair, you must first create the necessary objects in the LDAP directory. HA Branch Servers require the same LDAP objects as standard Branch Servers, with the following differences:
NOTE:Each LDAP object has two types of attributes: must and may attributes. The must attributes are required for an object; the may attributes are optional.
This section outlines the steps to add the necessary HA branch objects to the LDAP directory. The posAdmin command examples are based on the sample configuration shown in Figure 7-1. Modify the commands as necessary for your particular scenario.
NOTE:For ease of reference, the following procedure refers to the active node as BS1 and the standby node as BS2.
The branch objects you will create include:
Create an organizationalUnit object.
For example:
posAdmin.pl --user cn=admin,o=mycorp,c=us --password secret --base o=mycorp,c=us --add --organizationalUnit --ou boston
Create the scLocation object.
For example:
posAdmin.pl --user cn=admin,o=mycorp,c=us --password secret --base ou=boston,o=mycorp,c=us --add --scLocation --cn branch --ipNetworkNumber 192.168.1.0 --ipNetmaskNumber 255.255.255.0 --scDhcpRange 192.168.1.4,192.168.1.99 --scDhcpFixedRange 192.168.1.100,192.168.1.199 --scDefaultGw 192.168.1.1 --scDynamicIp TRUE --scWorkstationBasename CR --scEnumerationMask 000
Create an scServerContainer object.
For example:
posAdmin.pl --user cn=admin,o=mycorp,c=us --password secret --base cn=branch,ou=boston,o=mycorp,c=us --add --scServerContainer --cn server
In the new server container, create two Branch Server objects.
For example:
posAdmin.pl --user cn=admin,o=mycorp,c=us --password secret --base cn=server,cn=east,ou=boston,o=mycorp,c=us --add --scBranchServer --cn bs1
and
posAdmin.pl --user cn=admin,o=mycorp,c=us --password secret --base cn=server,cn=east,ou=boston,o=mycorp,c=us --add --scBranchServer --cn bs2
Define the network interface cards for each Branch Server.
Depending on network traffic and the desired performance, you can configure one to four network interface cards per Branch Server. The recommended four-card configuration is illustrated in Figure 7-1. For more information on entering the network interface card configuration in YaST, see Network Interfaces.
Table 7-1 summarizes the command options which correspond to the scNetworkcard object attributes.
Table 7-1 Attributes for scNetworkcard objects
The following examples demonstrate how to add network interface cards for the Branch Server, drbd, and heartbeat interfaces.
eth0 on BS1 for the public interface:
posAdmin.pl --user cn=admin,o=mycorp,c=us --password novell --base cn=bs1,cn=server,cn=east,ou=boston,o=mycorp,c=us --add --scNetworkcard --scDevice eth0 --ipHostNumber 151.155.173.111
eth1 on BS1 for the Branch Server interface:
posAdmin.pl --user cn=admin,o=mycorp,c=us --password secret --base cn=bs1,cn=server,cn=east,ou=boston,o=mycorp,c=us --add --scNetworkcard --scDevice eth1 --ipHostNumber 192.168.1.1 --ipNetmaskNumber 255.255.255.0
eth2 on BS1 for the drbd interface:
posAdmin.pl --user cn=admin,o=mycorp,c=us --password secret --base cn=bs1,cn=server,cn=east,ou=boston,o=mycorp,c=us --add --scNetworkcard --scDevice eth2 --ipHostNumber 192.168.2.1
eth3 on BS1 for the heartbeat interface:
posAdmin.pl --user cn=admin,o=mycorp,c=us --password secret --base cn=bs1,cn=server,cn=east,ou=boston,o=mycorp,c=us --add --scNetworkcard --scDevice eth3 --ipHostNumber 192.168.3.1
eth1:0 on BS1 for the Branch Server interface virtual IP:
posAdmin.pl --user cn=admin,o=mycorp,c=us --password secret --base cn=bs1,cn=server,cn=east,ou=boston,o=mycorp,c=us --add --scNetworkcard --scDevice eth1:0 --ipHostNumber 192.168.1.3
eth0 on BS2 for the public interface:
posAdmin.pl --user cn=admin,o=a35,c=us --password secret --base cn=bs2,cn=server,cn=branch,ou=provo,o=a35,c=us --add --scNetworkcard --scDevice eth0 --ipHostNumber 151.155.173.112
eth1 on BS2 for the Branch Server interface:
posAdmin.pl --user cn=admin,o=mycorp,c=us --password secret --base cn=bs2,cn=server,cn=east,ou=boston,o=mycorp,c=us --add --scNetworkcard --scDevice eth1 --ipHostNumber 192.168.1.2 --ipNetmaskNumber 255.255.255.0
eth2 on BS2 for the drbd interface:
posAdmin.pl --user cn=admin,o=mycorp,c=us --password secret --base cn=bs2,cn=server,cn=east,ou=boston,o=mycorp,c=us --add --scNetworkcard --scDevice eth2 --ipHostNumber 192.168.2.2
eth3 on BS2 for the Heartbeat interface:
posAdmin.pl --user cn=admin,o=mycorp,c=us --password secret --base cn=bs2,cn=server,cn=east,ou=boston,o=mycorp,c=us --add --scNetworkcard --scDevice eth3 --ipHostNumber 192.168.3.2
eth1:0 on BS1 for the Branch Server interface virtual IP:
posAdmin.pl --user cn=admin,o=mycorp,c=us --password secret --base cn=bs2,cn=server,cn=east,ou=boston,o=mycorp,c=us --add --scNetworkcard --scDevice eth1:0 --ipHostNumber 192.168.1.3
Add DHCP, DNS, and TFTP as HA services.
Table 7-2 summarizes the command options which correspond to the scHAService object attributes.
Table 7-2 Attributes for scHAService objects
The following commands demonstrate how to add DHCP, DNS, and TFTP as HA services in the example scenario.
For DHCP on BS1 as the primary service:
posAdmin.pl --user cn=admin,o=mycorp,c=us --password secret --base cn=bs1,cn=server,cn=east,ou=boston,o=mycorp,c=us --add --scHAService --cn dhcp --ipHostNumber 192.168.1.3 --scDnsName dhcp --scServiceName dhcp --scServiceStartScript dhcpd --scServiceStatus TRUE --scPrimaryService TRUE
For DNS on BS1 as the primary service:
posAdmin.pl --user cn=admin,o=mycorp,c=us --password secret --base cn=bs1,cn=server,cn=east,ou=boston,o=mycorp,c=us --add --scHAService --cn dns --ipHostNumber 192.168.1.3 --scDnsName dns --scServiceName dns --scServiceStartScript named --scServiceStatus TRUE --scPrimaryService TRUE
For TFTP on BS1 as the primary service:
posAdmin.pl --user cn=admin,o=mycorp,c=us --password secret --base cn=bs1,cn=server,cn=east,ou=boston,o=mycorp,c=us --add --scHAService --cn tftp --ipHostNumber 192.168.1.3 --scDnsName tftp --scServiceName tftp --scServiceStartScript atftpd --scServiceStatus TRUE --scPrimaryService TRUE
For DHCP on bs2 as the backup service:
posAdmin.pl --user cn=admin,o=mycorp,c=us --password secret --base cn=bs2,cn=server,cn=east,ou=boston,o=mycorp,c=us --add --scHAService --cn dhcp --ipHostNumber 192.168.1.3 --scDnsName dhcp --scServiceName dhcp --scServiceStartScript dhcpd --scServiceStatus TRUE --scPrimaryService FALSE
For DNS on BS2 as the backup service:
posAdmin.pl --user cn=admin,o=mycorp,c=us --password secret --base cn=bs2,cn=server,cn=east,ou=boston,o=mycorp,c=us --add --scHAService --cn dns --ipHostNumber 192.168.1.3 --scDnsName dns --scServiceName dns --scServiceStartScript named --scServiceStatus TRUE --scPrimaryService FALSE
For TFTP on BS2 as the backup service:
posAdmin.pl --user cn=admin,o=mycorp,c=us --password secret --base cn=bs2,cn=server,cn=east,ou=boston,o=mycorp,c=us --add --scHAService --cn tftp --ipHostNumber 192.168.1.3 --scDnsName tftp --scServiceName tftp --scServiceStartScript atftpd --scServiceStatus TRUE --scPrimaryService FALSE
Before you can boot the Point of Service terminals associated with a Branch Server, you must create additional objects in the branch portion of the LDAP directory. These include an scCashRegister object and its associated configuration objects for each type of Point of Service terminal in your system, and scPosImage objects for the client image files you want the Branch Server to distribute to Point of Service terminals.
For instructions on how to create these objects, see Section 11.2, Creating the LDAP Objects Required for the Point of Service Terminals.