ACE Routing Load-Balance problem

Unanswered Question
Nov 13th, 2007
User Badges:

I'm trying to configure a routing load-balance with Cisco ACE Module based on the following scenario:

local users has a router (R1) as it default gateway, this router (R1) has a default route to the VIP that represent the serverfarm with two linux servers that should be used for Data Shaping over the WAN. I need to balance the traffic over the two linux servers and not necessary over the WAN.

The problem is that when I set up the local network router default route to VIP the routing process simply stop work ! If I change the route to the real server ip address everything start working again without any problem.

Follow the configs:

Local network Router - Static route


ip route (VIP address)


Follow the ACE configs:


access-list 100 line 8 extended permit ip any any

rserver host rout001

ip address


rserver host rout002

ip address


serverfarm host BLC_ROUTING

predictor leastconns

rserver rout001


rserver rout002


class-map match-any VIP

2 match virtual-address any

class-map type management match-any mgmt

2 match protocol icmp any

3 match protocol telnet any

4 match protocol ssh any

policy-map type management first-match access

class mgmt


policy-map type loadbalance first-match INT_router

class class-default

serverfarm BLC_ROUTING

policy-map multi-match VIP

class VIP

loadbalance vip inservice

loadbalance policy INT_router

loadbalance vip icmp-reply

interface vlan 6

bridge-group 10

access-group input 100

service-policy input access

service-policy input VIP

no shutdown

interface vlan 8

bridge-group 10

access-group input 100

service-policy input access

service-policy input VIP

no shutdown

interface bvi 10

ip address

no shutdown


I tried to change some parameters like "transparent" at serverfarm config and change the "predictor" method to "hash address source" but there was no good results at all.

Anyone has any idea why this process is not working ?

Is there any special configuration for this scenario ?



  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
blade_ace Tue, 11/13/2007 - 09:09
User Badges:

Your image shows the VIP and the default gateway have the same ip address. I think that might be your issue.

sathappan Wed, 11/14/2007 - 07:51
User Badges:


Did u try a static route in the router

ip route

with regards


Gilles Dufour Fri, 11/16/2007 - 11:05
User Badges:
  • Cisco Employee,


What is this route ??

ip route (VIP address)

You can't have

You must be missing something ?

Also, since the vip is part of a vlan with subnet you don't need to add a static route to reach that vip.

It should normally be directly connected to your router.

With the static route, do you see traffic coming to the ACE module ?

Does it loadbalance to the server ?

'show service-policy detail' check the packet counters



This Discussion