06-19-2009 01:07 AM
Hi Friends,
Is it possible to do port redirection on ACE while it is configured on Bridged Mode. For example. a user is accessing the Loadbalancer VIP on port 80 and this is redirected to port 8080 on backend servers?
I have attached a diagram for easier understanding. Is there a need to configure NAT in such cases?
Any help will be appreciated. Thanks in advance guys.
Solved! Go to Solution.
06-21-2009 11:40 PM
Hi,
if you want to allow ping to the VIP address, you only need to apply this command in your L3-4 policy map:
loadbalance vip icmp-reply
example:
policy-map multi-match L4-TEST-VIPS
class WWW-TEST
loadbalance vip inservice
loadbalance policy WWW_POLICY
loadbalance vip icmp-reply
more info can be found here:
If you want ICMP to pass through the ACE tp reach the real servers, you need to allow it in an ACL.
Hope this helps,
Dario
06-19-2009 04:30 AM
Hi,
yes this is possible by just adding the port-number after the rserver name when defining the serverfarm.
For example:
rserver server1
ip address 192.168.10.110
inservice
rserver server2
ip address 192.168.10.111
inservice
serverfarm www-servers
rserver server1 8080
inservice
rserver server2 8080
inservice
class-map test
match virtual-address 192.168.10.100 tcp port eq 80
This way, the VIP will be on port 80, and the ACE will communicate with the real servers on port 8080.
Please rate if this was helpful for you.
HTH,
Dario
06-21-2009 08:45 PM
Thanks Dario.
It was really helpful, however just want to know whether ping is allowed since we mention only port 80 in the virtual address?
Thanks again.
06-21-2009 11:40 PM
Hi,
if you want to allow ping to the VIP address, you only need to apply this command in your L3-4 policy map:
loadbalance vip icmp-reply
example:
policy-map multi-match L4-TEST-VIPS
class WWW-TEST
loadbalance vip inservice
loadbalance policy WWW_POLICY
loadbalance vip icmp-reply
more info can be found here:
If you want ICMP to pass through the ACE tp reach the real servers, you need to allow it in an ACL.
Hope this helps,
Dario
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: