Instruction manual

ManualsBrandsCitrix Systems ManualsSwitch9000 Series

111

112

113

114

115

116

117

118

119

120

Chapter 3: High Availability

NetScaler 9000 Series Installation and Configuration Guide - Volume 1 3-3

NSICG60_JAN05

3.2 Considerations for High Availability Setup

To configure NetScaler 9000 systems for High Availability (HA) mode,

consider the following points.

1. In HA mode, when the password of the

nsroot user account is changed

on either system, the change must also be performed on the peer as

password synchronization is required.

2. The configuration file (

ns.conf) on the primary NetScaler 9000 system

and the configuration file (

ns.conf) on the secondary NetScaler 9000

system must match with following exceptions:

z The Primary and Secondary NetScaler 9000 system must be

configured with unique System IP addresses (NSIP).

Use the

ns config CLI command to configure or modify the

NSIP address.

z The Node ID and associated IP address must reflect peer’s Node

ID and IP addresses.

For example, if there are two NetScaler 9000 systems NS1 and

NS2 then NS1 must be configured with a unique node ID and IP

address of NS2 and NS2 must be configured with a unique node

ID and IP address of NS1.

3. Common configuration files may need to manually synchronized. On

both units in an HA setup, there may be a need to have a set of common

configuration files depending on the deployment needs.

For example, if SSL offload is enabled, then SSL certificates must be

placed at the same location (directory) on both the NetScaler units.

Similar examples include

vsr.html (for Sure Connect), any manually-

customized files, or any other batch files containing configuration

commands.

4. The RPC node passwords must be configured on HA systems. Initially,

all NetScaler systems are configured with the same RPC node password.

It is highly recommended that users change the RPC node passwords on

their NetScaler systems. RPC nodes are implicitly created by the

add ns

node

and add gslb site commands. There is no need or means to

create or delete RPC nodes explicitly.

To change an RPC node password use the

set rpcnode

<IP_address> -password <PASSWORD>

command. The

IP_address argument is the IP address of the peer NetScaler with

which this NetScaler is to communicate. The

PASSWORD argument is the