Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
714
Views
0
Helpful
1
Replies

ACE 4710 - Traffic to VIP not passing

networker99
Level 1
Level 1

‎01-28-2010 06:24 PM

We have the ACE appliance set up on 2x VLANs.  The public side has public addressing and the private side has RFC1918 addresses. All webservers sit on the private side and there is a punlic VIP applied to the site we are load balancing.  The load balancing part is working well.  However.. although the webservers work, they sometime need to send traffic to other servers within the same VLAN, I would like this traffic to be sent to a different VIP and load balanced between several servers performing the necessary function.  The issue is the traffic sent to the VIP isnt working and for the moment I am having to use the real RFC1918 addresses in host files..

Labels:
0 Helpful
1 Reply 1

dario.didio
Level 4
Level 4

‎01-29-2010 05:38 AM

Hi,

Probably your problem is the return traffic. Because all your servers are in the same VLAN (IP Subnet) the traffic flow is:

Server -> VIP on ACE -> server

Server <----------------------- server.

To have loadbalancing working, your initial and return traffic both need to pass the ace, because it is a stateful device.

You can solve this by doing source NAT.

Take a llok at following example on how to configure SNAT.

http://www.cisco.com/en/US/products/hw/modules/ps2706/products_configuration_example09186a00809c3041.shtml

HTH,

Dario

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents