Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
429
Views
0
Helpful
3
Replies

ACE implementation with servers at remote locations

sachin_mon
Level 1
Level 1

‎02-15-2010 10:44 PM

Hi,

We are having two ACE appliances in the datacenter in failover mode. Currently, we using route mode with two servers placed in the DC which are getting load balanced. Now, we are planning to move the servers to a new location and this location is reachable via WAN from the DC. Is there any challenge in moving the servers to a new location.

1. Do we need to do any natting ?

2. Is there any configuration document for ACE appliance using route mode with NAT ?

Any help would be appreciated.

Rgds./

Sck

Labels:
0 Helpful
3 Replies 3

Gilles Dufour
Cisco Employee
Cisco Employee

‎02-15-2010 11:07 PM

There are 2 things to look at.

1/ Make sure the ACE can reach the server (ping)

2/ Make sure the return traffic from the server goes back to the ACE

This 2nd point can be tricky when the servers are not directly connected to ACE.

The servers will see the connections coming from clients (not ACE ip address), therefore they will use a default gateway to send the response which does not necessarily send traffic back to ACE.

You may need policy routing on the gateway.

Or you may have to configure client nat (in this case, the servers see the connections coming from ACE itself), but then you lose information about client source ip.  This can be solved by doing header insert but this is only possible for HTTP and it has a cost in terms of performance.

The best option is to keep the servers close to the loadbalancer.

If you want to move both servers, see if you can also move the loadbalancer to the same remote location.

Gilles.

0 Helpful

sachin_mon
Level 1
Level 1
In response to Gilles Dufour

‎02-15-2010 11:21 PM

Thanks Gilles for your prompt reply. I would appreciate if you can share any configuration example for client NAT.

Rds./

Sck

0 Helpful

dario.didio
Level 4
Level 4
In response to sachin_mon

‎02-16-2010 12:30 AM

Hi,

take a look at following example which explains source NAT and also HTTP header insertion.

http://www.cisco.com/en/US/products/hw/modules/ps2706/products_configuration_example09186a00809c3041.shtml

HTH,
Dario

0 Helpful
Customers Also Viewed These Support Documents