Load Balancing of XMS Cluster in NetScaler manually

Xenmobile

1    Finding XMS Node Server IDs

To find service IDs of nodes, perform the below steps:

FROM CLI:

1. Login to CLI of XMS for which you want to find the node ID

2. Enter choice as 1 to get into Clustering Menu

3. You can see the node ID, as shown

Note: Repeat same steps to find the Node IDs of all the cluster members in the XMS cluster

FROM GUI:

1. Login to XMS Admin Console

2. In the support page, click on Cluster Information under Advanced

3. You will find the node IDs, as shown below

 

Once the required nodes are added as members of XMS cluster, you need to load balance them to access these clusters. Since it is a unified XMS server console, you need to configure SSL bridge on MDM component and MAM component. You will also need to configure DNS address record (NetScaler > Traffic Management > DNS Records > Address Records) to point the XMS FQDN to MAM LB VIP. The required details are explained in the this blog.

2    SSL BRIDGE – MDM LB VIP

In this section, we will look at configuring SSL Bridge using the wizard in NetScaler.

1. Login to NetScaler Gateway

2. In the Configuration tab, click on XenMobile

3. Click on Configure (Device Manager Load Balancing)

4. Enter the LB VIP


5. Click on Continue

6. To this VIP, add the XMS nodes

7. Enter the XMS server IP

8. Click Add

9. In the same way, add the second node of XMS

10. Click Continue and then Done.

This will create the MDM LB VIP

2.1    SSL OFFLOAD – MAM LB VIP

You need to configure SSL Offload for MAM component on 8443 port by following the steps below

1. Navigate to Configurations -> Traffic Management ->Load Balancing ->Virtual Servers

2. Click on ‘Add’

3. Enter the MAM LB VIP server info here

4. Protocol should be SSL and Port should be 8443

5. Click Continue

6. After you have created a VIP, you need to add the Persistence value

7. Select Persistence as CustomServerID

8. Enter the below value as expression

HTTP.REQ.COOKIE.VALUE(“ACNODEID”)

9. Click Save and you will see this screen with saved settings

10. Since this is on SSL Certificate, you need to bind the server certificate. From Advanced on the left side, choose certificates

11. Choose the > mark to add certificate (as shown below)

12. It will take you to server cert key page, click Bind

13. Select the SSL certificate and click on Insert

14. Click Continue

15. Click Done

2.2    Create Service Groups

Create Service Groups by following the steps given here:

Service Group for MDM on Port 443

1. Navigate to NetScaler > Traffic Management > Load Balancing > Service Groups

2. Click Add

3. Choose the protocol as SSL_BRIDGE

4. Click Continue

5. Click Done to create service group

6. In the same way, create one more service group for MDM on port 8443

7. Once done with MDM, you need to create a service group for MAM on port 8443

Note: You can follow the same steps as above. Make sure the Protocol is selected as SSL

2.3    Create Members for Service Groups

Create members for Service Groups by following the steps given here

1. Open the LB service groups and click on first (or anyone) to add members

2. Here, I have selected MDM service group on port 443

3. Click + next to Members

4. Click > to add service members

5. Click Add

6. Enter the IP address of the Node

7. Make sure the port number matches.

8. Repeat the same steps for other nodes of in cluster

9. Once done, click Close

10. Click Done

11. Repeat the same steps for MDM service group on port 8443

Note: Since groups and members are mapped, you would see the status UP

12. Now, open the MAM service group

13. Perform the same steps as you have done for MDM, and also you need to add the server IDs as shown here.

14. You should see all the VIPs in Enabled and UP mode

2.4    Binding LB VIPs to Service Groups

You need to bind the service groups with the LB VIPs. You can do that by performing the below steps

1. Open the MDM LB (or anyone that you like)

2. On the right side, click on service groups

3. Click the > mark in the service group

4. Click on Bind

5. Select the same port group to bind

6. Click Save

7. Click Done

8. You will see that LB VIP shows as enabled and up

9. Repeat the steps for other LB VIPs

10. You should see all the LBs in UP and Enabled state

2.5    Point AG VIP to LB VIP

After configuring the LB VIP, you point AG to LB VIP. You can do that by following the below steps:

1. Open the AG VIP configuration page (NS Configuration -> XenMobile)

2. Click Edit

3. Click on Edit beside XenMobile Settings

4. Append the App Controller FQDN (XMS FQDN) with :8443

5. After you append, you would see the port as below

6. Click Done

2.6    Point XMS Host to MAM LB VIP

You need make changes in NS to route all the traffic from AG to MAM LB VIP. To achieve this, we need to add a DNS record in NS, as below

1. Navigate to NetScaler > Traffic Management > DNS > Records > Address Records

2. Click Add

3. Enter the Host Name and AG VIP IP address and click the + sign to add the IP

4. Click Create

5. You will see the DNS entry in the list.

IMPORTANT: The MAM LB VIP FQDN, MDM LB VIP FQDN and the XMS FQDN should be same.