I plan to move to a roommate. I have experience in server management, but the network part has always been run by my hosting company.
I would like to achieve redundancy at the network level. In this way, if a router or switch goes down, the service will not be interrupted.
Here is a diagram of what it might look like (sorry, it must be copied / pasted, I am a newb and I can not create a link): https: //shared-files-and-data.s3-us- west-1.amazonaws .com / network.png
1. Routers act as a router, VPN server, and load balancer.
– Would it be better if the load balancer is separated?
2. All IPMI interfaces are reserved for the local network and must be accessible through the virtual private network.
3. Each application server is connected to the WAN, but only for outgoing / initiated requests by the server.
– It seems simpler and more fault-tolerant, but is it better to do NAT via routers?
4. Regarding the implementation, I like the idea that routers run a standard Linux distribution, rather than using appliances. My feeling is that the device routers all have proprietary interfaces, which makes the configuration less portable. Plus, the devices seem expensive for the lean material that they offer.
– I think everything I just described should be achievable with iptables, routes and OpenVPN. Does this sound correct?
Overall, any help or comments would be appreciated. If someone advises a consultant who can help to implement this configuration, it would be great too!