ACE in routed mode

Unanswered Question

do i have no NAT client initiated connection to reals when i use routed mode ...similar to how one sets up a vip for reals when you need to manage the server in the server vlan in the csm ...

example for the ace:

do i have to use NAT

client 3.3.3.3 tries to ssh. telnet to server 2.2.2.5

Client=3.3.3.3 (ssh)------vlan 20 ip 1.1.1.0/24-------ACE---vlan 40 2.2.2.0/24--------RealServer =2.2.2.5

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Gilles Dufour Wed, 02/28/2007 - 07:01

unlike the CSM, the ACE module does not require any policy or nating to allow traffic from client directly to realy.

All you need is make sure you have an access-group in on both client and server vlan that permits the traffic.

Gilles.

Gilles Dufour Fri, 03/02/2007 - 00:28

Pedro.

NO !

The ACE does not need a policy to forward the traffic. Only the CSM does.

Gilles.

Actions

This Discussion