ACE Best Practices

Answered Question
Mar 24th, 2009
User Badges:

Hi everybody,


What is the recommendation or best practice for the Admin context? For example, is recommend use it only for FT configuration?


In the same context, the ACE module can work in bridge mode and routing mode? (Obviously with different vlans)


About redundancy, what configuration is made in the standby module? I suppose that the only configuration needed is the standby context and the FT related configuration (FT track, FT peer, FT group and FT interface).


What is the resource limits recommendation for the standby context in FT?


During the configuration of ACE in routing mode, there is any interruption in the network? Is necessary having a maintance window?


Thanks and Regards,

PM

Correct Answer by Syed Iftekhar Ahmed about 8 years 1 day ago

I would rather move the servers to the new vlan. Server's default gateway will remain the same.


Since you are bridging two vlans, both vlans will use the same address space. In order to reach default gateway (SVI) Servers will have to pass through the ACE.


Syed

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 4.5 (2 ratings)
Loading.
Syed Iftekhar Ahmed Wed, 03/25/2009 - 10:59
User Badges:
  • Blue, 1500 points or more


Since all the other contexts are accessible from Admin context. It is wise to use it for only Admin purposes (as long as you need less than 5 contexts :).


Yes you can have both routed mode & Bridge mode configured in same context.


Only FT related config is needed on Stdby. Stdby will copy all config from the Primary ACE, once FT is configured.

Don forget to create & Assign Vlans from both switches to primary & Secondary vlans.


You dont configure different resource limits on Standby. It will get the same config that was configured on Primary and hence the same resource limit.


It depends.

If ACE is in the traffic path and you

are changing Interface IP address on ACE then it will.


Syed

p.maciasc Wed, 03/25/2009 - 11:36
User Badges:

Hi Syed


I take advantage of your knowledge :)



In the begging the clients, servers and the default gateway are in a vlan (suppose vlan 10). The default gateway is a SVI in the c6500.


When I configure the ACE module in bridge mode, I create a new vlan in Layer 2 (again suppose vlan 20). And move the clients to a new vlan (vlan 20) and leave the servers in the old vlan (vlan 10) and configure the ACE for bridge these two vlans.


But the default gateway still is the SVI in the c6500 in the vlan 10.


How the clients keep in contact with their default gateway?

The IP address configured in the ACE's BVI interface is the new default gateway of the clients? Or the ACE's VIP?


Again Thanks

PM


Correct Answer
Syed Iftekhar Ahmed Wed, 03/25/2009 - 11:53
User Badges:
  • Blue, 1500 points or more

I would rather move the servers to the new vlan. Server's default gateway will remain the same.


Since you are bridging two vlans, both vlans will use the same address space. In order to reach default gateway (SVI) Servers will have to pass through the ACE.


Syed

p.maciasc Wed, 03/25/2009 - 12:01
User Badges:

Then, there's no change of any type, in the IP configuration in the servers and the clients.


Thanks Syed for your help and patience

Regards,

PM


Actions

This Discussion