1
00:00:02,040 --> 00:00:05,280
Now that we have our additional VPN server configured and deployed,

2
00:00:05,280 --> 00:00:08,080
we can move on to the task of enabling load balancing.

3
00:00:08,080 --> 00:00:10,170
Now, as I stated previously,

4
00:00:10,170 --> 00:00:13,750
I recommend using an external load balancer for best performance,

5
00:00:13,750 --> 00:00:15,010
but unfortunately,

6
00:00:15,010 --> 00:00:17,770
covering all the configuration options for third‑party load

7
00:00:17,770 --> 00:00:20,540
balancers out there is out of scope for this course.

8
00:00:20,540 --> 00:00:21,330
However,

9
00:00:21,330 --> 00:00:23,670
Windows Network Load Balancing is a viable

10
00:00:23,670 --> 00:00:25,500
alternative to an external load balancer,

11
00:00:25,500 --> 00:00:28,080
and it is easy to configure and costs nothing,

12
00:00:28,080 --> 00:00:29,460
so we'll take a look at that now.

13
00:00:29,460 --> 00:00:32,800
Before we get started, I want to talk about some of the requirements for NLB.

14
00:00:32,800 --> 00:00:36,080
The first thing we need to do is install the NLB role,

15
00:00:36,080 --> 00:00:38,450
and we need to do that on all of the servers in the

16
00:00:38,450 --> 00:00:41,240
cluster prior to configuration.

17
00:00:41,240 --> 00:00:42,040
Next,

18
00:00:42,040 --> 00:00:46,880
we need to set aside an IP address for the virtual IP address. This is

19
00:00:46,880 --> 00:00:50,800
going to be the IP address that we address the cluster as,

20
00:00:50,800 --> 00:00:54,710
and this needs to be an IP address from the same subnet as

21
00:00:54,710 --> 00:00:57,660
the dedicated IP address or the IP address that the VPN

22
00:00:57,660 --> 00:01:00,640
servers are physically numbered into.

23
00:01:00,640 --> 00:01:01,750
And then finally,

24
00:01:01,750 --> 00:01:04,450
just a quick word about operating mode. Network Load Balancing

25
00:01:04,450 --> 00:01:06,570
has a couple of different operating modes,

26
00:01:06,570 --> 00:01:09,340
the most common are unicast and multicast.

27
00:01:09,340 --> 00:01:11,920
And we recommend using a unicast wherever possible,

28
00:01:11,920 --> 00:01:14,500
but sometimes we have to use multicast.

29
00:01:14,500 --> 00:01:14,800
So,

30
00:01:14,800 --> 00:01:18,790
unicast works well in physical environments. Oftentimes, when we work

31
00:01:18,790 --> 00:01:21,850
in virtual environments, you'll have to switch to multicast mode just

32
00:01:21,850 --> 00:01:25,800
because of the subtleties and nuances of virtual networking, and there

33
00:01:25,800 --> 00:01:29,650
may be some additional configuration required to support multicast

34
00:01:29,650 --> 00:01:31,110
mode. Specifically,

35
00:01:31,110 --> 00:01:35,120
you may need to create static ARP entries on border routers or

36
00:01:35,120 --> 00:01:38,910
firewalls to support that, so that's in a bit of an advanced

37
00:01:38,910 --> 00:01:41,300
configuration. We're going to use unicast mode,

38
00:01:41,300 --> 00:01:42,890
and when that works, it works well,

39
00:01:42,890 --> 00:01:50,000
but you may have to use multicast mode in your environment depending on your particular hypervisor.