Open topic with navigation

High Availability

This template applies high availability configuration to the vThunder instances. It automatically synchronizes Thunder configurations between the active and standby Thunder instances. In the event of a failover, it designates the other Thunder instance as active to ensure uninterrupted traffic routing. For this functionality, it is essential for both Thunder instances to have identical resources and configurations.

 

High availability can be configured within same or different availability zone within a same region.

vThunder instances should have the same versions; otherwise, traffic flow will be disrupted.

 

To configure HA for vThunder instances, perform the following steps:

  1. Download A10-vThunder_ADC-CONFIGURATION > HIGH-AVAILABILITY template from GitHub.

  2. From Start menu, open PowerShell and navigate to this downloaded folder and open the HA_CONFIG_PARAM.json with a text editor.

    NOTE: Each parameter has a default value mentioned in the parameter file which can be modified as required.

  3. Configure the following parameters:

    Table 14 : JSON Parameters

    Resource Name

    Description

    DNS

    Specify a domain namespace.

            "dns": {
            "value": "8.8.8.8"
        },

    Network Gateway IP

    Specify a Network Gateway IP.

    The default value of network gateway IP address is 10.0.2.1 as this is the first IP address of the data subnet 1 configuration.

            "rib-list": [
            {
            "ip-dest-addr":"0.0.0.0",
            "ip-mask":"/0",
            "ip-nexthop-ipv4": [
                {
                "ip-next-hop":"10.0.2.1"
                }
            ]
            }
        ],

    VRRP-A

    Specify the value as 1 to enable VRRP-A.

            "vrrp-a": {
            "set-id":1
        },

    Terminal Idle Timeout

    Specify the interval in minutes for closing connection when there is no input detected. The value '0' means never timeout.

            "terminal": {
            "idle-timeout":0
        },

    VRID details

    Specify the VRID details.

    The default value of vrid is 0. The default priority for vThunder-1 is 100, and for vThunder-2 is 99 (100-1). The floating ip address value is generated dynamically after deploying the template. Therefore, its default value under vrid-list should be replaced, see Get FIP address . 

            "vrid-list": [
            {
            "vrid-val":0,
            "blade-parameters": {
                "priority": 100
            },
            "floating-ip": {
                "ip-address-cfg": [
                    {
                      "ip-address":"10.0.3.6"
                    }
                  ]
                }
            }
        ],

    vThunder Host IP

    Specify the Public IP address of one or more vThunder instance/s depending on the deployed template.

            "hostIPAddress": {
            "vThunderIP": [
                "<vThunder1_IP>",
                "<vThunder2_IP>"]
            },

    vThunder details

    Specify a 'Read/Write/HM' privilege username, virtual IP address of vThunder instance, and primary private IP address of datain NIC of both vThunder instances.

            "vThUsername": "admin",
        "vip": "<Datain NIC vip private address of active vThunder>",
        "eth1PrivateIpAddressVm1": "<Datain NIC Primary Private address of vThunder1>",
        "eth1PrivateIpAddressVm2": "<Datain NIC Primary Private address of vThunder2>"
    ClosedGet FIP address

    To get the FIP address deploying the vThunder instances, perform the following steps:

    1. From the Home, navigate to Azure services > Resource Group > <resource_group_name>.
    2. Go to the first virtual machine instance. Here, first virtual machine instance is vth-inst1.
    3. Select Networking from the left Settings panel.
    4. Select the Dataout NIC tab > IP configuration. Here, vth-inst1-dataout-nic.

      Figure 156 : Virtual machine - Networking window - Dataout NIC tab

    5. Select the NIC Private IP.

    6. Replace the ip-address value under vrid-list with this fip. 

       "vrid-list": [
            {
            "vrid-val":0,
            "blade-parameters": {
                "priority": 100
            },
            "floating-ip": {
                "ip-address-cfg": [
                    {
                      "ip-address":"10.0.3.5"
                    }
                  ]
                }
            }
        ]
    NOTE: ha-conn-mirror does not work on port 80 and 443.
  4. Verify if all the configurations in the HA_CONFIG_PARAM.json file are correct and save the changes.
  5. Import Azure access key on both the vThunder instances. For more information, refer Import Azure Access Key File.

  6. Run the following command to configure HA:

    PS C:\Users\TestUser\A10-vThunder_ADC-CONFIGURATION\HIGH-AVAILABILITY> .\HA_CONFIG.ps1

  7. Provide password for the vThunder instances/s whose IP address is mentioned in the HA_CONFIG_PARAM.json file.
    If HA is configured successfully, the following message is displayed:

    Enter Password for x.x.x.x : *********
    Configured primary dns
Configured ip route
    configured vrrp-a common
    configured terminal timeout
1
Configured vrid
0
    1
Configured peer-group
Configurations are saved on partition: shared
    Configured HA on vThunder Instance 1
    Session ID closed for x.x.x.x.
--------------------------------------------------------
    Enter Password for x.x.x.x : ************
Configured primary dns
Configured ip route
Configured vrrp-a common
Configured terminal timeout
    2
Configured vrid
0
    1
Configured peer-group
Configurations are saved on partition: shared
    Configured HA on vThunder Instance 2
    Session ID closed for x.x.x.x.
------------------------------------------------------

COMPANY INFORMATION: Copyright © 2023 A10 Networks, Inc. All Rights Reserved. Legal Notice