Prerequisites
- This document assumes that you have a fully functioning Virtru Customer Hosted Gateway.
- Before proceeding with the steps below, it is recommended to create a backup of the existing
/vg
directory on your Linux server or/gateway
directory on your Kubernetes server. - You have completed the prerequisites for setting up additional servers for the Virtru Customer Hosted Gateway.
Adding Multiple Gateway Servers
Note: Your servers can be installed on different hosts and can be located in separate locations.
To add multiple additional servers to your infrastructure, follow the initial steps outlined in the installation guide on your new server.
The additional gateway server(s) will use the same configuration as your primary gateway. Follow these steps to replicate the configuration:
-
Stop Running Containers
From the original server (Host A), stop the running gateway container:cd /var/virtru/vg/
docker stop <container-name>
-
Copy Configuration
To copy the container configuration to the new server (Host B):scp -r /var/virtru/vg root@host_B.example.com:/var/virtru/vg
-
Start the Containers
On both Host A and Host B, run the following commands to start the containers:- On Host A:
cd /var/virtru/vg/scripts
Note: Run the setup script after you have successfully confirmed Host B is operational.setup-mode-port.sh
- On Host B:
cd /var/virtru/vg/scripts
sh setup-mode-port.sh
- On Host A:
Once the additional server(s) are configured, the next step is to add their IP addresses or Fully Qualified Domain Name (FQDN) to your email tenant.
Email Tenant Configuration for Multiple Hosts
Microsoft Exchange Online
- Go to the Exchange Admin Center > Mail Flow > Connectors.
- Create a new connector:
- Connection from: Office 365
- Connection to: Partner Organization
- Name: e.g., Virtru Customer Hosted Gateway (Mode)
- In the Routing section, select “Route email through these smart hosts” and enter the IP addresses or FQDN(s) of your additional hosts.
- Click Next and select "Always use Transport Layer Security (TLS)" to secure the connection, then choose "Any digital certificate, including self-signed certificates."
- Validate the connector, then click Next > Yes, proceed > Create Connector > Done.
For more details, refer to the Microsoft documentation.
Google Workspace
- Go to the Google Admin Console > Google Workspace > Gmail > Hosts > Add Route.
- Name the route, e.g., Virtru Customer Hosted Gateway (Mode).
- Specify the email server and select "Multiple hosts".
- Enter the IP addresses or FQDN(s) for your additional servers.
Note: Ensure the total load for all servers equals 100%. For example, if you have two servers, each should have a load percentage of 50%.
- Click Save.
For more details, refer to Google Workspace documentation.
SMTP Relay for Google Workspace
If Google Workspace is performing the final delivery of the emails, you'll need to set up an SMTP relay for the additional IP addresses:
- Go to the Google Admin Console > Apps > Google Workspace > Settings for Gmail > Routing > SMTP Relay Service.
- Create your SMTP relay service and configure it with the IP addresses of your hosts.
More information can be found in the Virtru Customer Hosted Gateway Relay for Google Workspace.
Load Balancer Configuration
Your multiple servers can also be placed behind a load balancer, which distributes traffic evenly across all servers. This helps share the workload and ensures continuous service if a server goes down.
Consider using managed load balancers from cloud providers such as AWS, Azure, or Google Cloud. The load balancer IP address will be used in your Google Workspace Host and SMTP relay configuration, as well as in the Microsoft Exchange Connector.
Conclusion
This guide explains how to add multiple Virtru Customer Hosted Gateway servers to your infrastructure in addition to your existing functional gateway. By following these steps, you can ensure redundancy, load distribution, and improved reliability across your infrastructure.