Help us enhance your Sophos Community experience. Share your thoughts in our Sophos Community survey.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 2 replies
  • Subscribers 4 subscribers
  • Views 1723 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

DNS Failover - Two ISP's for SSL backup

DaveGrasso

I have an SSL defined so that when you use a browser and type in a https://FQDN a look up in the A record for that domain points to a Public IP of my UTM SG-230 and NAT's to the Web Server.  I want to create a fail-over so that if the primary public IP is not available the DNS will point to the secondary Public IP.

Is their anything in the SG-230 that allows for this or must I use a 3rd party "DNS Failover" like dnsmadeeasy.com or similar ?

Is the Network Services, DynDNS a possible solution ?

Thanks!

 

 



This thread was automatically locked due to age.
  • 0

    I looked at this a while ago.

    We were looking at it for our 2 RDS gateways whilst using WAF at 2 sites. If we turned an RDS gateway off, the WAF still responded (which we didn't want)

    So we looked for a 3rd party DNS failover that looked for a specific URL to be alive.

    In our case, DNS round robin didn't cut it. Nor did SRV records.

    For true https failover, I think you may need a 3rd party DNS service that supports failover.

  • 0 in reply to Louis-M

    Thanks for the reply - I appreciate your input.

     

    Anyone else have success with a good 3rd party solution to handle this request ?

     

    Thank-You

     

    Dave

Unfiltered HTML