We have two security servers set up in HA. There is a public IP of course pointing view.domain.com and that hits our edge router. The IP it hits is a VIP in a Fortigate. So, behind the VIP in the Fortigate are the IPs of the two security servers. When I take down one security server, everything still works. It does't matter which security server I take down, one or two, everything still works so I'll say my HA on the security server is good to go. It goes not so well with the connection servers and HA.
We spun up two connection servers and they are replicating just fine, but the failover is not working. If I kill connection server 1, I get an HTTP 503 error.
Now, we have an internal VIP for the same URL and it's pointing to an internal VIP and behind that VIP are the two connection servers. Internally, if I kill one connection server, the other one picks up.
So, it's just externally that I'm having the problem. How do I set up the connection servers for failover from external?
Thanks
Cliff