ACE pat

Unanswered Question
Oct 30th, 2007
User Badges:

Hi, can you explain why the ACE module is changing the source port

number for incomming connections? We have vip with cookie stickiness

and 4x rservers. I have taken trace and also from show conns can see

that vip/port is translated to real/port as expected but also source port is changed.


Is this normal behaviour when stickiness is enabled?

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Gilles Dufour Tue, 10/30/2007 - 06:36
User Badges:
  • Cisco Employee,

CSCsk50407 - ACE breaks application by performing implicit PAT on loadbalanced conns



The implicit pat is actually required to guarantee that the traffic always goes through the same IXP.

With this new fix, it has been disabled when not required - also check the command "hw-module cde-same-port-hash".


Gilles.

Actions

This Discussion