Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
409
Views
0
Helpful
4
Replies

Servers connected to CSS - only see themselves on port 80

Go to solution
moorewr
Level 1
Level 1

‎02-05-2007 09:11 AM

I have a strange problem with a pair of web servers directly connected to our CSS - no matter what hostname I try to connect to port 80 from their command line, the connection si routed back to them. On any other port the connection goes to the real remote destination. How can I fix this?

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Gilles Dufour
Cisco Employee
Cisco Employee
In response to moorewr

‎02-06-2007 11:26 PM

to turn on the acl, you have to type 'acl enable'.

Send us your config if it does not work.

Also, do some troubleshooting.

Like 'show acl' to see if traffic hits the right one.

Gilles.

View solution in original post

0 Helpful
4 Replies 4

Go to solution
Gilles Dufour
Cisco Employee
Cisco Employee

‎02-06-2007 04:35 AM

you probably have a rule that catches all traffic sent to port 80.

So, this rule catches the connection open by the server and redirect it back to the server.

To avoid this issue, you need to create an ACL so the servers can bypass the content rule

Something like

acl 1

clause 10 bypass tcp x.x.x.x destination any

clause 99 permit any any destination any

apply all

Replace the x.x.x.x with your servers ip address.

Gilles.

0 Helpful

Go to solution
moorewr
Level 1
Level 1
In response to Gilles Dufour

‎02-06-2007 01:11 PM

Hmm.

I did not have any ACLs in my config, and adding the example above didn't change the behavior. Attempting to visit anything outside on port 80 looped back to the VIP.

0 Helpful

Go to solution
Gilles Dufour
Cisco Employee
Cisco Employee
In response to moorewr

‎02-06-2007 11:26 PM

to turn on the acl, you have to type 'acl enable'.

Send us your config if it does not work.

Also, do some troubleshooting.

Like 'show acl' to see if traffic hits the right one.

Gilles.

0 Helpful

Go to solution
moorewr
Level 1
Level 1
In response to Gilles Dufour

‎02-07-2007 06:56 AM

`acl enable' did the trick. Alas - I'm always forgetting `commit' in sqlplus, too, so this is par for the course.

Thanks again...

-Walter

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents