Lesson 10-exchange Availability

1-dag

Dag technology is primarily used for high availability of Exchange mailbox roles

EXCHANGE2010 Standard Edition only supports 5 databases, Enterprise Edition supports 100 databases

Copy principle:

is to copy the log, then tamper with the database, the DAG supports 16 nodes

650) this.width=650; "height=" title= "clip_image002" style= "margin:0px;border:0px;padding-top:0px"; Padding-right:0px;padding-left:0px;background-image:none, "alt=" clip_image002 "src=" http://s3.51cto.com/wyfs02/ M02/6c/45/wkiom1vdrprtfh4qaabh3654sr8825.jpg "border=" 0 "/>

1.1 Aspects to configure DAG attention

1-When configuring a DAG, you need a witness server (actually a file that is automatically created) that can be non-Exchange mailbox roles

2-exchange mailbox must have 2 NICs,

3-The local Administrators group for the witness server must contain the ' Exchange trusted subsystem ' group

4-failover clustering does not require manual installation

5-No SAN is required to configure the DAG, saving cost, suitable for small and medium enterprises

6-Activate the purpose of the preferred number: If there are multiple copies of the database, we can use this option to determine which server (replica) is prioritized for activation, and the lower the value, the higher the priority.

650) this.width=650; "height=" 279 "title=" clip_image004 "style=" margin:0px;border:0px;padding-top:0px; Padding-right:0px;padding-left:0px;background-image:none, "alt=" clip_image004 "src=" http://s3.51cto.com/wyfs02/ M00/6c/45/wkiom1vdrpurjzimaadjkh3sk-8835.jpg "border=" 0 "/>

1.2-dag Configuration steps

All configuration operations need to be done on a single server.

1-Create a witness server by creating a new Dag

650) this.width=650; "height=" 265 "title=" clip_image006 "style=" margin:0px;border:0px;padding-top:0px; Padding-right:0px;padding-left:0px;background-image:none, "alt=" clip_image006 "src=" http://s3.51cto.com/wyfs02/ M01/6c/45/wkiom1vdrpzdwhgwaaesudvmr3c350.jpg "border=" 0 "/>

2-Adding a DAG group member

Win2008-1 and Win2008-4

650) this.width=650; "height=" 234 "title=" clip_image008 "style=" margin:0px;border:0px;padding-top:0px; Padding-right:0px;padding-left:0px;background-image:none, "alt=" clip_image008 "src=" http://s3.51cto.com/wyfs02/ M02/6c/45/wkiom1vdrp3gm1qwaadtk2oxnjy797.jpg "border=" 0 "/>

650) this.width=650; "height=" 482 "title=" clip_image010 "style=" margin:0px;border:0px;padding-top:0px; Padding-right:0px;padding-left:0px;background-image:none, "alt=" clip_image010 "src=" http://s3.51cto.com/wyfs02/ M00/6c/45/wkiom1vdrp_hfiyzaagf5pn-vf4659.jpg "border=" 0 "/>

3-View and configure the cluster

We want to configure the external address of the Cluster service to bring it online service

650) this.width=650; "Height=" 509 "title=" clip_image012 "style=" margin:0px;border:0px;padding-top:0px; Padding-right:0px;padding-left:0px;background-image:none, "alt=" clip_image012 "src=" http://s3.51cto.com/wyfs02/ M01/6c/45/wkiom1vdrqhsqoj5aafvhwmj3lg270.jpg "border=" 0 "/>

650) this.width=650; "height=" "title=" clip_image014 "style=" margin:0px;border:0px;padding-top:0px; Padding-right:0px;padding-left:0px;background-image:none, "alt=" clip_image014 "src=" http://s3.51cto.com/wyfs02/ M00/6c/45/wkiom1vdrqkzdr2oaacivcf1ckg430.jpg "border=" 0 "/>

DNS is automatically updated

650) this.width=650; "height=" "title=" clip_image016 "style=" margin:0px;border:0px;padding-top:0px;padding-right : 0px;padding-left:0px;background-image:none; "alt=" clip_image016 "src=" http://s3.51cto.com/wyfs02/M00/6C/41/ Wkiol1vdsa2bippqaabmzi2ufna537.jpg "border=" 0 "/>

Let's optimize the cluster network.

Make the following settings on the heartbeat line, close the Dns/netbios

650) this.width=650; "height=" 364 "title=" clip_image018 "style=" margin:0px;border:0px;padding-top:0px; Padding-right:0px;padding-left:0px;background-image:none, "alt=" clip_image018 "src=" http://s3.51cto.com/wyfs02/ M01/6c/41/wkiol1vdsa_jagc9aaedataydzi343.jpg "border=" 0 "/>

650) this.width=650; "height=" 173 "title=" clip_image020 "style=" margin:0px;border:0px;padding-top:0px; Padding-right:0px;padding-left:0px;background-image:none, "alt=" clip_image020 "src=" http://s3.51cto.com/wyfs02/ M02/6c/41/wkiol1vdsa_wog0raacszf0l3pa184.jpg "border=" 0 "/>

1.3 Adding a mailbox copy

650) this.width=650; "height=" 292 "title=" clip_image022 "style=" margin:0px;border:0px;padding-top:0px; Padding-right:0px;padding-left:0px;background-image:none, "alt=" clip_image022 "src=" http://s3.51cto.com/wyfs02/ M01/6c/41/wkiol1vdsbccibf0aadce13-isq328.jpg "border=" 0 "/>

650) this.width=650; "height=" 460 "title=" clip_image024 "style=" margin:0px;border:0px;padding-top:0px; Padding-right:0px;padding-left:0px;background-image:none, "alt=" clip_image024 "src=" http://s3.51cto.com/wyfs02/ M00/6c/45/wkiom1vdrqewmw5daad99mvgg_w981.jpg "border=" 0 "/>

1.4 Tuning Database Redundancy

Good redundancy: Win2008-4 provides services to the global IT database, Win2008-1 serves the local it database

Now by default, Win2008-1 serves both local it and global it two databases simultaneously

Now I'm making adjustments so that win2008-4 serves the global IT database.

650) this.width=650; "height=" 321 "title=" clip_image026 "style=" margin:0px;border:0px;padding-top:0px; Padding-right:0px;padding-left:0px;background-image:none, "alt=" clip_image026 "src=" http://s3.51cto.com/wyfs02/ M01/6c/45/wkiom1vdrqizfoqraadtmtst5-4391.jpg "border=" 0 "/>

650) this.width=650; "height=" "title=" clip_image028 "style=" margin:0px;border:0px;padding-top:0px; Padding-right:0px;padding-left:0px;background-image:none, "alt=" clip_image028 "src=" http://s3.51cto.com/wyfs02/ M02/6c/45/wkiom1vdrqirozu_aabzjlonkka596.jpg "border=" 0 "/>

When Win2008-4 is turned off, the database is automatically transferred Win2008-1

650) this.width=650; "height=" 126 "title=" clip_image030 "style=" margin:0px;border:0px;padding-top:0px; Padding-right:0px;padding-left:0px;background-image:none, "alt=" clip_image030 "src=" http://s3.51cto.com/wyfs02/ M00/6c/45/wkiom1vdrqngfyzfaaclu9xju6y093.jpg "border=" 0 "/>

2-hub HA

Hub HA is NLB-based, so your two hub servers must be installed with the NLB service

Hub ha Principle: Receive Message direction: by configuring NLB (port), Send message direction: Add multiple hub servers to the Send connector

Test topology:

650) this.width=650; "height=" 392 "title=" clip_image032 "style=" margin:0px;border:0px;padding-top:0px; Padding-right:0px;padding-left:0px;background-image:none, "alt=" clip_image032 "src=" http://s3.51cto.com/wyfs02/ M01/6c/41/wkiol1vdsbxctbugaafe6ictizw144.jpg "border=" 0 "/>

2.1 Establishing NLB

First to install NLB service in win2008-3 and win 2008-1

The biggest change after installation is that the NIC has one more NLB service

If the server has a NIC configured as multicast, if two NICs are configured as unicast

650) this.width=650; "height=" 274 "title=" clip_image034 "style=" margin:0px;border:0px;padding-top:0px; Padding-right:0px;padding-left:0px;background-image:none, "alt=" clip_image034 "src=" http://s3.51cto.com/wyfs02/ M01/6c/45/wkiom1vdrqyg4bo9aacyrfp3kqi355.jpg "border=" 0 "/>

650) this.width=650; "height=" 244 "title=" clip_image036 "style=" margin:0px;border:0px;padding-top:0px; Padding-right:0px;padding-left:0px;background-image:none, "alt=" clip_image036 "src=" http://s3.51cto.com/wyfs02/ M02/6c/45/wkiom1vdrq2worhuaacihyxn784972.jpg "border=" 0 "/>

Develop cluster operation mode: multicast because there is only one NIC

650) this.width=650; "height=" 257 "title=" clip_image038 "style=" margin:0px;border:0px;padding-top:0px; Padding-right:0px;padding-left:0px;background-image:none, "alt=" clip_image038 "src=" http://s3.51cto.com/wyfs02/ M00/6c/41/wkiol1vdsbjwuzhkaacwti-kpla377.jpg "border=" 0 "/>

Configure ports

650) this.width=650; "height=" 411 "title=" clip_image040 "style=" margin:0px;border:0px;padding-top:0px; Padding-right:0px;padding-left:0px;background-image:none, "alt=" clip_image040 "src=" http://s3.51cto.com/wyfs02/ M01/6c/41/wkiol1vdsbmw9dvdaaeddzh3-fa332.jpg "border=" 0 "/>

650) this.width=650; "height=" 199 "title=" clip_image042 "style=" margin:0px;border:0px;padding-top:0px; Padding-right:0px;padding-left:0px;background-image:none, "alt=" clip_image042 "src=" http://s3.51cto.com/wyfs02/ M01/6c/45/wkiom1vdrq-sdyynaacu17tug2i374.jpg "border=" 0 "/>

Add your own 192.168.70.55, and finally to the aggregated state

650) this.width=650; "height=" "title=" clip_image044 "style=" margin:0px;border:0px;padding-top:0px; Padding-right:0px;padding-left:0px;background-image:none, "alt=" clip_image044 "src=" http://s3.51cto.com/wyfs02/ M02/6c/45/wkiom1vdrrchlpf1aactiiq4u8o467.jpg "border=" 0 "/>

DNS mail.lab.com A Record modified to

650) this.width=650; "height=" "title=" clip_image046 "style=" margin:0px;border:0px;padding-top:0px;padding-right : 0px;padding-left:0px;background-image:none; "alt=" clip_image046 "src=" http://s3.51cto.com/wyfs02/M00/6C/45/ Wkiom1vdrrcb9s_uaaaszvhgxmk390.jpg "border=" 0 "/>

2.2 Establish DNS resolution for both parties

Lab.com and test.com Mutual mail communication Prerequisites MX Records can parse each other

650) this.width=650; "height=" 102 "title=" clip_image048 "style=" margin:0px;border:0px;padding-top:0px; Padding-right:0px;padding-left:0px;background-image:none, "alt=" clip_image048 "src=" http://s3.51cto.com/wyfs02/ M02/6c/41/wkiol1vdsbvsrwc8aabkgiqkj_y781.jpg "border=" 0 "/>

650) this.width=650; "height=" 101 "title=" clip_image050 "style=" margin:0px;border:0px;padding-top:0px; Padding-right:0px;padding-left:0px;background-image:none, "alt=" clip_image050 "src=" http://s3.51cto.com/wyfs02/ M00/6c/41/wkiol1vdsbyciddxaabej76cxe4374.jpg "border=" 0 "/>

2.3 Setting up an external (test.com) mail system

Here we use Win2003 to build the pop3/smtp small mail system (the process is slightly)

2.4 Creating an internal (lab.com) messaging system

Turn on SMTP anonymous settings

When creating an SMTP connector, be sure to set up 2 hub servers

650) this.width=650; "height=" 216 "title=" clip_image052 "style=" margin:0px;border:0px;padding-top:0px; Padding-right:0px;padding-left:0px;background-image:none, "alt=" clip_image052 "src=" http://s3.51cto.com/wyfs02/ M00/6c/45/wkiom1vdrroszvy9aadrhmqurv4711.jpg "border=" 0 "/>

2.5 Testing

lab.com---->test.com, message header information

650) this.width=650; "height=" "title=" clip_image054 "style=" margin:0px;border:0px;padding-top:0px;padding-right : 0px;padding-left:0px;background-image:none; "alt=" clip_image054 "src=" http://s3.51cto.com/wyfs02/M01/6C/41/ Wkiol1vdsb6wjxlaaacl8cfplfk374.jpg "border=" 0 "/>

Now let's shut down the win2008-3 server and look at the NLB manager, and you can see that win2008-3 is unreachable

650) this.width=650, "height=", "title=" clip_image056 "style=" margin:0px;border:0px;padding-top:0px;padding-right : 0px;padding-left:0px;background-image:none; "alt=" clip_image056 "src=" http://s3.51cto.com/wyfs02/M01/6C/45/ Wkiom1vdrrsj1ri9aachiq2v52g916.jpg "border=" 0 "/>

Use [email protected] to send a test message to see the message header information

650) this.width=650; "height=" "title=" clip_image058 "style=" margin:0px;border:0px;padding-top:0px;padding-right : 0px;padding-left:0px;background-image:none; "alt=" clip_image058 "src=" http://s3.51cto.com/wyfs02/M02/6C/45/ Wkiom1vdrrxib2hkaacd7vdvyos072.jpg "border=" 0 "/>

From the above information, the hub has been load balanced

3-cas HA

The high availability of CAS is done through CAS array

3.1CAS Certificate Services

Before configuring the CAS array we need to configure the next CAS certificate service

1-First create a new certificate in win2008-3 and export the base 64 encoded document

650) this.width=650; "height=" 237 "title=" clip_image060 "style=" margin:0px;border:0px;padding-top:0px; Padding-right:0px;padding-left:0px;background-image:none, "alt=" clip_image060 "src=" http://s3.51cto.com/wyfs02/ M02/6c/41/wkiol1vdschqni2jaadfxnetsh0818.jpg "border=" 0 "/>

2-Request a certificate and download it for secure encryption

650) this.width=650; "height=" 619 "title=" clip_image062 "style=" margin:0px;border:0px;padding-top:0px; Padding-right:0px;padding-left:0px;background-image:none, "alt=" clip_image062 "src=" http://s3.51cto.com/wyfs02/ M01/6c/41/wkiol1vdsckzlnvbaaiofzjpv8c250.jpg "border=" 0 "/>

3-Complete Shelve request

650) this.width=650; "height=" "title=" clip_image064 "style=" margin:0px;border:0px;padding-top:0px; Padding-right:0px;padding-left:0px;background-image:none, "alt=" clip_image064 "src=" http://s3.51cto.com/wyfs02/ M02/6c/41/wkiol1vdscogjjgkaacxi_57y0m561.jpg "border=" 0 "/>

4-Assigning services

650) this.width=650; "height=" 233 "title=" clip_image066 "style=" margin:0px;border:0px;padding-top:0px; Padding-right:0px;padding-left:0px;background-image:none, "alt=" clip_image066 "src=" http://s3.51cto.com/wyfs02/ M00/6c/41/wkiol1vdsctt4os4aacske7tase416.jpg "border=" 0 "/>

5-Export certificate for win2008-5 use

650) this.width=650; "height=" "title=" clip_image068 "style=" margin:0px;border:0px;padding-top:0px;padding-right : 0px;padding-left:0px;background-image:none; "alt=" clip_image068 "src=" http://s3.51cto.com/wyfs02/M01/6C/41/ Wkiol1vdscwzr8tfaaawe_mghx0406.jpg "border=" 0 "/>

Finally delete the useless certificate

Certificate Services Here are not very detailed, you can refer to the previous chapters

3.2 Configuring the CAS Array

Two commands:

New-clientaccessarray–fqdn mail.lab.com–site "Default-first-site-name" –name mail.lab.com

View command: Get-clientaccessarray

Get-mailboxdatabase | Set-mailboxdatabase–rpcclientaccessserver "Mail.lab.com"

650) this.width=650; "height=" 101 "title=" clip_image070 "style=" margin:0px;border:0px;padding-top:0px; Padding-right:0px;padding-left:0px;background-image:none, "alt=" clip_image070 "src=" http://s3.51cto.com/wyfs02/ M01/6c/45/wkiom1vdrrzwvuaeaabvmsp5poq816.jpg "border=" 0 "/>

3.3 Testing

Log in to Win7 client with Alice account

650) this.width=650; "height=" 259 "title=" clip_image072 "style=" margin:0px;border:0px;padding-top:0px; Padding-right:0px;padding-left:0px;background-image:none, "alt=" clip_image072 "src=" http://s3.51cto.com/wyfs02/ M00/6c/41/wkiol1vdscfjjz3gaaehmabqobc145.jpg "border=" 0 "/>

650) this.width=650; "height=" 151 "title=" clip_image074 "style=" border:0px;padding-top:0px;padding-right:0px; Padding-left:0px;background-image:none, "alt=" clip_image074 "src=" http://s3.51cto.com/wyfs02/M00/6C/45/ Wkiom1vdrr7qeivdaacswz4n-ws506.jpg "border=" 0 "/>

Shut down a CAS server, Alice mailbox is still working

This article from the "Erick" blog, declined to reprint!

Lesson 10-exchange Availability