Loadbalancing ldaps on ACE module

Unanswered Question
Jan 15th, 2008

Is it possible to configure loadbalancing of ldaps with end-to-end mode (encryption from end to end) on ACE module ?

And if yes, do i have to use a special script for health checking ?

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
irisrios Tue, 01/22/2008 - 08:32

I have not come across Lodabalacing of LDAPs on ACE module. But it is planned to be suppored in future.

afef.slim Tue, 01/22/2008 - 08:39

But what about ldaps termination (ldaps between clients and the ACE and in clear between ACE and servers)on the ACE box, is it supported ?

danger_mousie Wed, 01/23/2008 - 01:07

Please correct me if this is wrong or bad design: I have ldaps running just by permitting the port in the ACLs and VIP class. Customer says it works fine.

I'm sure you're aware of the health probe scripts you can get from Cisco (attached). This script defaults to ldap port (386) if none is specified. So you can specify the port under the "probe scripted LDAP_PROBE" config to use ldaps (636). Perhaps you should use both scripted probes together so that if one port is unavailable the server will be taken out of service.


This Discussion