View Single Post
Old 31st January 2013, 03:40
vestport vestport is offline
Join Date: Aug 2007
Posts: 65
Thanks: 8
Thanked 1 Time in 1 Post
Default Mirror RAID, NIC configurations & firewall

Hello Group,

I have planned a new ISPCONFIG3 install on CentOS 6.3 and had a few questions.

Drive Configuration:
The server I will be using is a dual quad processor Dell PowerEdge 1950 rack server. It is an older server but has the 64bit & L2 cache etc. Unfortunately there are only 2 sata drive bays. Typically I just install centOS + ISPCONFIG on a large single drive and then image the whole drive from time to time using G4U (Ghost for Unix) for backups. This time I am entertaining just doing a mirrored raid so I don't have to backup as often. That way if one drive goes down there is no data loss and no downtime until I swap the drive out (using G4U to image the good drive that is left). Since there are only 2 SATA bays I will need to pull one drive and reboot with G4U to backup from time to time.
I know writes may be a bit slower with the mirror array but I believe reads are faster. My question regarding this topic is simply should I use a mirror raid array as I desribed above or not? I am interested in any opinions.

Networking :
Ideally I would like to utalize both network cards in the server as follows. One configured with a real IP (WAN) and the other configured with a non-broadcast IP for my LAN segment and for faster local transfers. I do not intend to use the ISPCONFIG box in any way as a router/gateway for the LAN side. In the past I have had some problems trying to run 2 or more network cards with ISPCONFIG. I bailed and just decided to run a single network card on a real IP in the ISPCONFIG box versus a non-broadcast IP behind a third party firewall.
I forget if the issue was simply trying to get to the ISPCONFIG server via FQDNS from the LAN (I think so)? I have 5 IP's available on my feed. It looks like the only way I can use all 5 for ISPCONFIG & LAN is if my ISPCONFIG box is setup with a non-broadcast IP and behind a third party firewall. Then have the firewall (like m0n0wall forward any relevant port requests to the ISPCONFIG box like SSH, http, https, DNS etc.).
In this configuration I would only need to run one network port (just the LAN side) which solves speed issues for local transfers to and from the ISPCONFIG box. If I use a real IP on the ISPCONFIG box + built in firewall (like I have it now) then my LAN computers will need their own IP (one IP) to be able to access the net. In this situation (as is the case currently) trying to access the ISPCONFIG box is as slow as if it were on the other side of the planet or at least as fast/slow as my feed if you know what I mean. Also, I loose being able to assign that IP on ISPCONFIG because I will need it for the LAN side.

In short I my plan is to run a mirrored array backud up occasionally with G4U and either my ISPCONFIG box with a non-broadcast address on a single IP behind a third party firewall or an ISPCONGIG box with 2 cards active (one for LAN + one for WAN) as described above. Not sure what to do as I want to assign multiple IP's do different domains on the ISPCONFIG box.

Thanks in advance for any replies/advice.

Reply With Quote
Sponsored Links