Loadbalancing ldaps on ACE module

Unanswered Question
Jan 15th, 2008
User Badges:

Is it possible to configure loadbalancing of ldaps with end-to-end mode (encryption from end to end) on ACE module ?

And if yes, do i have to use a special script for health checking ?

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
irisrios Tue, 01/22/2008 - 08:32
User Badges:
  • Silver, 250 points or more

I have not come across Lodabalacing of LDAPs on ACE module. But it is planned to be suppored in future.

afef.slim Tue, 01/22/2008 - 08:39
User Badges:

But what about ldaps termination (ldaps between clients and the ACE and in clear between ACE and servers)on the ACE box, is it supported ?

danger_mousie Wed, 01/23/2008 - 01:07
User Badges:

Please correct me if this is wrong or bad design: I have ldaps running just by permitting the port in the ACLs and VIP class. Customer says it works fine.

I'm sure you're aware of the health probe scripts you can get from Cisco (attached). This script defaults to ldap port (386) if none is specified. So you can specify the port under the "probe scripted LDAP_PROBE" config to use ldaps (636). Perhaps you should use both scripted probes together so that if one port is unavailable the server will be taken out of service.


This Discussion