Servers connected to CSS - only see themselves on port 80

Answered Question

I have a strange problem with a pair of web servers directly connected to our CSS - no matter what hostname I try to connect to port 80 from their command line, the connection si routed back to them. On any other port the connection goes to the real remote destination. How can I fix this?

I have this problem too.
0 votes
Correct Answer by Gilles Dufour about 9 years 7 months ago

to turn on the acl, you have to type 'acl enable'.

Send us your config if it does not work.

Also, do some troubleshooting.

Like 'show acl' to see if traffic hits the right one.

Gilles.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 4 (1 ratings)
Loading.
Gilles Dufour Tue, 02/06/2007 - 04:35

you probably have a rule that catches all traffic sent to port 80.

So, this rule catches the connection open by the server and redirect it back to the server.

To avoid this issue, you need to create an ACL so the servers can bypass the content rule

Something like

acl 1

clause 10 bypass tcp x.x.x.x destination any

clause 99 permit any any destination any

apply all

Replace the x.x.x.x with your servers ip address.

Gilles.

Correct Answer
Gilles Dufour Tue, 02/06/2007 - 23:26

to turn on the acl, you have to type 'acl enable'.

Send us your config if it does not work.

Also, do some troubleshooting.

Like 'show acl' to see if traffic hits the right one.

Gilles.

Actions

This Discussion