Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
287
Views
5
Helpful
1
Replies

CSM: Bridged mode, client-side MSFC -- require SNAT for server-VIP?

adrian_chung
Level 1
Level 1

‎12-21-2005 01:11 PM

When a CSM is deployed in a bridged mode configuration with the MSFC located toward the client-side, is source NAT still required for server-side server to VIP communications?

Or does the CSM automatically snoop/intercept the return traffic and direct it through itself?

It is not clear from the CSM 4.2 configuration guide whether or not the CSM will intercept the traffic, or if a nat-pool and SNAT is still required.

Labels:
0 Helpful
1 Reply 1

Gilles Dufour
Cisco Employee
Cisco Employee

‎12-22-2005 01:16 AM

if the traffic crosses the CSM it will be intercepted whatever the mode [briding or routing].

So, if the default gateway of the servers is the MSFC, all traffic sent from server to client via the gateway will go accross the CSM and therefore it will be intercepted.

However, if you want server to server communication through the VIP, you still need source nating as the traffic from server to server in the same subnet will not require the use of the gateway and will therefore still bypass the CSM.

Regards,

gilles.

Thanks for rating this answer.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents