Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
553
Views
0
Helpful
6
Replies

CSM Traffic Flows

ruggirello
Level 1
Level 1

‎02-28-2007 05:23 AM

Need to understand who the traffic flow/session goes thru the CSM module. My my concern is to undestand who a catch-all vserver works, Is the CSM making a entry to forward back the traffic to the origin host?

Thanks,

Gustavo

Labels:
0 Helpful
6 Replies 6

Gilles Dufour
Cisco Employee
Cisco Employee

‎03-02-2007 12:20 AM

the csm always try to first match a packet with a flow entry [you can do a 'sho mod csm X conn' to see the list of flows].

If there is a match, the CSM will use the flow info to perform nat and forward the packet.

If no entry exist, it will try to find a matching rule and perform the required action and create a new flow.

Gilles.

0 Helpful

ruggirello
Level 1
Level 1
In response to Gilles Dufour

‎03-02-2007 05:12 AM

Hi Gilles,

Thank you for your answer. But what happens with the reply from the balanced server? How this packet is going thru the CSM back to the client?

Cheers,

Gustavo

0 Helpful

slavb
Level 1
Level 1
In response to ruggirello

‎03-12-2007 11:50 AM

Gustavo

It would go to the gateway set on CSM client vlan.

Slav

0 Helpful

Gilles Dufour
Cisco Employee
Cisco Employee
In response to ruggirello

‎03-13-2007 06:40 AM

Gustavo,

this is exactly what I explained in my previous post.

Let's try it differently.

when a client opens a TCP connection with the CSM vserver, the CSM will make a loadbalancing decision and select a server.

It will then create 2 flow entries.

1 for client -> vserver and 1 for server-> client.

This flow entries contain client ip and src mac address.

So, when the response from the server comes back, the CSM will match to the flow server -> client, extract the src mac-address and client vlan and forward the server response using that info.

Gilles.

0 Helpful

slavb
Level 1
Level 1
In response to Gilles Dufour

‎03-13-2007 08:24 AM

From Catalyst 6500 Series Content Switching

Module Configuration Note

"There are three situations in which the CSM must make a routing decision:

? Upon receiving a new connection.

At this time, the CSM needs to decide where to send the return traffic for that connection. Unlike

other devices, the CSM will not perform a route lookup, but memorizes the source MAC address

from where the first packet of the connection was received. Return traffic for that connection is sent

back to the source MAC address. This behavior also works with redundancy protocols between

upstream routers, such as HSRP.

? The CSM is configured in router mode.

The servers are pointing to the CSM as their default gateway and the servers are originating

connections.

? A server farm is configured with the predictor forward option (see Chapter 5, ?Configuring Real

Servers and Server Farms?). This predictor instructs the CSM to route the connection instead of load

balancing it."

This pretty much goes along with what you've said Gilles, with the exception of the client mac address, as CSM more then likely will see mac address of its client vlan L3 interface.

0 Helpful

slavb
Level 1
Level 1

‎03-12-2007 11:36 AM

Gustavo

I am not sure if I understand your question. Do you want to know how does vserver works that allows direct aaccess to behind the CSM?

Slav

0 Helpful
Customers Also Viewed These Support Documents