02-27-2007 01:12 PM
do i have no NAT client initiated connection to reals when i use routed mode ...similar to how one sets up a vip for reals when you need to manage the server in the server vlan in the csm ...
example for the ace:
do i have to use NAT
client 3.3.3.3 tries to ssh. telnet to server 2.2.2.5
Client=3.3.3.3 (ssh)------vlan 20 ip 1.1.1.0/24-------ACE---vlan 40 2.2.2.0/24--------RealServer =2.2.2.5
02-28-2007 07:01 AM
unlike the CSM, the ACE module does not require any policy or nating to allow traffic from client directly to realy.
All you need is make sure you have an access-group in on both client and server vlan that permits the traffic.
Gilles.
03-01-2007 08:58 PM
you also have to add a policy to forward traffic...i have to try it..
seems that the ace has to have a policy when it processes traffic in routed mode...
class-map match-all forward_vip
2 match virtual-address 0.0.0.0 0.0.0.0 any
policy-map type loadbalance first-match forward_vip_pol class class-default
forward
03-02-2007 12:28 AM
Pedro.
NO !
The ACE does not need a policy to forward the traffic. Only the CSM does.
Gilles.
06-27-2007 05:15 AM
Then what's the use of the 'forward' command ??
06-27-2007 11:20 AM
ignore :)
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide