CSM access control

Unanswered Question
Apr 28th, 2008
User Badges:

I have a basic CSM setup where 2 servers are load balanced accross a CSM. How would I disable anything other than established connections for going out of the servers through the CSM's? The servers are externally managed where incoming loadbalanced (through the CSM) connections are permitted but the 3rd party should be disabled from making outgoing connections from the servers.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Gilles Dufour Thu, 05/01/2008 - 12:01
User Badges:
  • Cisco Employee,

you could create a vserver with a vip 0.0.0.0/0, specify the server vlan with the 'vlan x' command and use a serverfarm with a fake real server with no mac-address so those connections should be dropped.

ACE has a 'drop' option which permit the same thing more easily.


Gilles.

Actions

This Discussion