Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
322
Views
0
Helpful
2
Replies

One-armed without NAT

jcarvalh
Level 1
Level 1

‎02-07-2008 09:19 AM

Hello.

I am designing a CSS11506 solution in one-armed mode for an allready existing network (I am balancing webservers).

In my topology I have to use Client Nat in order for things to work.

However I've been told that the servers need to see the clients real IP address.

Does anyone know how can I solve this issue? Does direcly

I thought changing to inline mode, however that would not solve it because the default gateway of the server is the firewall; and even if I allow traffic on the firewall, the PC firewall of the client side will refuse the connection.

Best regards,

Joao

Labels:
0 Helpful
2 Replies 2

jcarvalh
Level 1
Level 1

‎02-07-2008 03:13 PM

Please forget my post. Client gave me wrong info.

Best regards,

Joao

0 Helpful

gohyeeshiang
Level 1
Level 1

‎02-19-2008 03:00 AM

Hi Joao,

In your approach, try to implement on direct server return(DSR) where you do not need to configure nat client.

In DSR, you are required to use PBR to divert the traffic to the CSM.

0 Helpful
Customers Also Viewed These Support Documents