Re: Securing web site with redundancy ?

["aditya shah" <adityabshah () hotmail com>]

 please suggest Any good site for Alteon firewall related configuration.
I am having trouble in HA mode. The configuration is not stable .

Specially for windows server, in case of HA load balancing testing all FTP
sessions get terminated.
Please suggest pointers.

Regards,
Aditya shah

----- Original Message -----
From: "Volker Tanger" <volker.tanger () detewe de>
To: <security-basics () securityfocus com>; <pen-test () securityfocus com>
Sent: Monday, August 23, 2004 8:18 PM
Subject: Re: Securing web site with redundancy ?


> > -----Original Message-----
> > From: Bénoni MARTIN [mailto:Benoni.MARTIN () libertis ga]
> > I was wondering if there was a way to set up 2 "redundant" web servers
> > (identical web sites), i.e. when one crashes, the other one takes the
> > connection over. The same thing which is already available for
> > firewalls(high disponibility), but with web servers.
> >
> > We would have 2 Windozes in a DMZ with IIS as the web server, and a
> > pix firewall between the dmz and Internet. Is there any tool allowing
> > this out there ? I tried to google quite a while, but without any
> > chance...
>
> Lots of:
> - Cisco Load Balancer (or Alteon or F5 or ...), expensive
> - reverse Proxy in between Pix and servers
> - DNS RoundRobin (and checks on the DNS server)
> - Linux Virtual Server - with ICMP redirect
> - STONITH type of scripting on the IIS systems, taking over
>   the IP address of the broken system
>
>
> Volker Tanger
>
> --
>
> Managed Services
> Professional Services/IT-Management
> DeTeWe AG & Co. KG
>
> Fon +49 30 6104-3307
> Fax +49 30 6104-665430
> http://www.detewe.de
>
> --------------------------------------------------------------------------
----
> Ethical Hacking at the InfoSec Institute. All of our class sizes are
> guaranteed to be 12 students or less to facilitate one-on-one interaction
> with one of our expert instructors. Check out our Advanced Hacking course,
> learn to write exploits and attack security infrastructure. Attend a
course
> taught by an expert instructor with years of in-the-field pen testing
> experience in our state of the art hacking lab. Master the skills of an
> Ethical Hacker to better assess the security of your organization.
>
> http://www.securityfocus.com/sponsor/InfoSecInstitute_pen-test_040817
> --------------------------------------------------------------------------
-----
>

------------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. All of our class sizes are
guaranteed to be 12 students or less to facilitate one-on-one interaction
with one of our expert instructors. Check out our Advanced Hacking course,
learn to write exploits and attack security infrastructure. Attend a course
taught by an expert instructor with years of in-the-field pen testing
experience in our state of the art hacking lab. Master the skills of an
Ethical Hacker to better assess the security of your organization.

http://www.infosecinstitute.com/courses/ethical_hacking_training.html
-------------------------------------------------------------------------------