allowing mulitple ports on serve

Unanswered Question
Mar 16th, 2010
User Badges:

We are adding a server to the ACE..


I know i could allow multiple ports to a VIP with this rule


class-map match-all NEWSERVER-VIP
  2 match virtual-address 172.20.224.65 any



However,
i want to limit it to just 2 ports 8301 and 8302


I created this


class-map match-all NEWSERVER-VIP
  2 match virtual-address 172.20.224.65 tcp eq 8301



However I also want port 8302 to connect too.


I tried to add


3 match virtual-addres 172.20.224.65 tcp eq 8302


but that didnt work..


Error: Only one match virtual-address is allowed in a match-all class-map and it
cannot mix with any other match type


How can I add  second port?



I would add those ports those to the rserver too

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
ciscocsoc Wed, 03/17/2010 - 06:22
User Badges:
  • Silver, 250 points or more

Hi,


Use match-any rather than match all. For example:


class-map match-any L4VIPCLASS-www-Distance
  2 match virtual-address 10.10.10.10 tcp eq www

  3 match virtual-address 10.10.10.10 tcp eq 81


You shouldn't need to do anything special to the rserver definition as the traffic will go out to the same port as it came in to. This doesn't apply if you've forced the port to something else at the serverfarm level.


Alternatively if you don't want to undo your work define another class-map for the same vip but on the new port and then add that to the relevant policy maps.


class-map match-any L4VIPCLASS-Chat
  2 match virtual-address 10.10.10.11 tcp eq 2304
class-map match-any L4VIPCLASS-www
  2 match virtual-address 10.10.10.11 tcp eq www


policy-map multi-match L4POLICY
  class L4VIPCLASS-Web
    ...stuff here
  class L4VIPCLASS-Chat
    ... more stuff here
  class L4VIPCLASS-www
    ... even more stuff here


HTH


Cathy

Actions

This Discussion