02-19-2007 06:56 PM
Hi,
We have a CSM set up in a one-armed configuration using PBR to ensure src port 80 traffic from back-end servers goes back to the CSM.
I was just wondering if there's any possible way that we can allow a direct connection to port 80 on the back-end servers (from other servers not on the same VLAN) and still have the reply traffic end up at the right place, even though it will be affected by PBR.
Cheers.
02-20-2007 11:21 AM
PBR will forward the traffic to the CSM which by default does not like half-opened connection.
There is a variable called ROUTE_UNKNOWN_FLOW_PKTS that allows such kind of traffic to be routed.
Set this var to 1 or 2 and it should allow the traffic to be routed.
Gilles.
02-20-2007 03:18 PM
Perfect, thanks very much.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: