I've got an issue with outbound connections from directly connected servers on my CSM.
The vserver/serverfarm setup as below, to allow routing via the CSM and I've an arp entry for the source address on the CSM.
virtual 0.0.0.0 0.0.0.0 any
no nat server
no nat client
Incoming traffic using the forwarder is working fine.
To assist faulting I've added a new vserver with just the destination address and I can see drop's.
virtual 14x.14y.168.196 any
AP001DSW01#sh mod csm 3 vservers name TEST_CD det
TEST_CD, type = SLB, state = OPERATIONAL, v_index = 27
virtual = 14x.14y.168.196/32:0 bidir, any, service = NONE, advertise = FALSE
idle = 3600, replicate csrp = none, vlan = ALL, pending = 30, layer 4
max parse len = 2000, persist rebalance = TRUE
ssl sticky offset = 0, length = 32
conns = 0, total conns = 91
maxconn drops = 0, total drops = 91
server farm = FORWARDER, backup = <not assigned>
sticky: timer = 0, subnet = 0.0.0.0, group id = 0
Policy Tot matches Client pkts Server pkts
(default) 91 91 0
The routing on CSM vlans is as follow's and I've got a arp entry for the gateway.
vlan 402 client
ip address 10.81.24.36 255.255.255.240 alt 10.81.24.37 255.255.255.240
alias 10.81.24.38 255.255.255.240
vlan 406 server
ip address 10.81.24.129 255.255.255.192 alt 10.81.24.130 255.255.255.192
alias 10.81.24.131 255.255.255.192
The routing is server, CSM, interface on Cat and then firewall but when doing a tcpdump on firewall I can't see anything when the server starts a connect but I can ping the destination server from the cat and see that on the firewall.
The SW on the CSM is vers 4.2.3 and I've done a tcpdump from the server and it looks like the CSM is resetting the connection.
This is working ok on other CSM's in the platform but they have SW vers 4.2.2.