Simple problem, but couldn't find anything in existing threads.
I have 2 same servers behind NAT with all the necessary ports forwarded to 1 of them. If one goes down, i manually change port forwarding to the 2nd server.
Is it possible, to setup port forwarding with DOWN detection, so if the 1st server goes down, ports would automatically forwarded to the 2nd server?
Thanks!
Re: Dynamic port forwarding
Why does a server go down? Makes no sense.
Re: Dynamic port forwarding
There are many reasons for server to go down ... one is that it emits smoke. Snd what @OP wants to do is a "poor man's high-availability". I'm affraid that out of the box, ROS doesn't have such functionality. But there's always possibility to create some script which checks one server and if it fails to respond, reconfigure DST-NAT rules to redirect traffic to the other server. And vice versa.Why does a server go down? Makes no sense.
Re: Dynamic port forwarding
Yeah /tool/netwatch is the "poor mans" way of HA. See https://help.mikrotik.com/docs/display/ROS/Netwatch
Basically you can ping your primary server using netwatch, and have an "on-down" script that modifies the firewall to change the to-address to the 2nd servers. And also an "on-up" script that then changes same dst-nat rules to-address back to 1st servers.
e.g. basically a few "set" operation in on-up or up-down, with one for each dst-nat your using in the general form:
/ip/firewall/nat/set [find protocol=tcp dst-port=XXX] to-address=<server>
I suppose another alternative be setting up VRRP on the servers themselves, and RouterOS using the VRRP address for dst-nat.
Basically you can ping your primary server using netwatch, and have an "on-down" script that modifies the firewall to change the to-address to the 2nd servers. And also an "on-up" script that then changes same dst-nat rules to-address back to 1st servers.
e.g. basically a few "set" operation in on-up or up-down, with one for each dst-nat your using in the general form:
/ip/firewall/nat/set [find protocol=tcp dst-port=XXX] to-address=<server>
I suppose another alternative be setting up VRRP on the servers themselves, and RouterOS using the VRRP address for dst-nat.
Re: Dynamic port forwarding
I actually had that happen once - although it was running as a server (and a server OS) it was actually a dell tower. Everything after that that was running as a server was a "real" server machine. The first of which came with 14 internal fans. You could hear it reboot from across the street because all 14 fans came up to full speed - SCREAM. Got me highly motivated to build my data cabinet out in the garage.There are many reasons for server to go down ... one is that it emits smoke.
To get back on topic, I have used the "poor mans HA". It does work.
Who is online
Users browsing this forum: Google [Bot], shadowEvil and 22 guests