Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
336
Views
0
Helpful
3
Replies

CSS11506 - Some basic help needed

dclee
Level 1
Level 1

‎05-09-2007 11:37 AM

Alright, I have a CSS11506 in the lab and I am trying to configure it into a reverse proxy config. So I would like to have all inbound http requests hit the CSS and then have it redirect to our web server on correct DMZ. Having never setup a CSS before I need some help.

- Is my service type proxy-cache, type redirect or type transparent cache ?

I know this should be fairly easy to do with the 11506. Can you also provide some docs explaining the config walkthru.

Any help would be appreciated.

Cheers

Dave

Labels:
0 Helpful
3 Replies 3

Syed Iftekhar Ahmed
Level 8
Level 8

‎05-09-2007 11:49 AM

If requirement is simply to direct all http requests to an application's virtual IP (defined on CSS) to a group of web servers then you dont need to define any service type. The default "type local" will work for you.

transparent-cache/proxy-cache type services are needed when you are dealing with Cache engines instead of webservers.Redirect type service is used to redirect client's request to a diffrent host (using 302 messages).

Syed

0 Helpful

dclee
Level 1
Level 1
In response to Syed Iftekhar Ahmed

‎05-09-2007 12:42 PM

Thanks, that explains a few things.

So assuming the following, DMZ web server ip is 192.168.20.50 and VIP for CSS is 192.168.20.100, basically I would want to redirect all inbound http requests from 192.168.20.100 to the 192.168.20.50 using the following CSS config ?

service rprox1

ip address 192.168.20.50

protocol tcp

port 8080

active

owner clee

content redirect_rule

add service rprox1

vip address 192.168.20.100

protocol tcp

port 8080

url "/*"

Like I said, never configured one yet so this is my first attemtp.

Thanks again for the help

Cheers

Dave

0 Helpful

Syed Iftekhar Ahmed
Level 8
Level 8
In response to dclee

‎05-09-2007 08:47 PM

The above config will work if you are expecting the traffic on port 8080.

The only other thing you need to make sure is that the return traffic should not bypass CSS.

If your clients are coming from any other networks than 192.168.20.x, then you can ensure that by pointing the webserver's default gateway to the CSS circuit ip.

If you are also expecting clients from network 192.168.20.x network then you will need to source nat such traffic.

Syed

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents