!Generated on 12/31/2007 17:35:09 !Active version: sg0750103 configure !*************************** GLOBAL *************************** bridge spanning-tree disabled no restrict web-mgmt ip route 0.0.0.0 0.0.0.0 192.168.175.1 1 !************************* INTERFACE ************************* interface e1 phy 100Mbits-FD description "connecte au lan dmz" interface e2 phy 100Mbits-FD description "connecte a inetportala2" interface e3 phy 100Mbits-FD description "connecte a inetsso2" interface e4 phy 100Mbits-FD description "connecte a inetocs2" interface e5 phy 100Mbits-FD description "connecte a inetportala1" interface e6 phy 100Mbits-FD description "connecte a inetocs1" interface e7 phy 100Mbits-FD description "connecte a inetsso1" interface e8 phy 100Mbits-FD description "sera utilise pour isc-port-one" !************************** CIRCUIT ************************** circuit VLAN1 ip address 192.168.175.7 255.255.255.0 ip virtual-router 4 priority 110 preempt ip virtual-router 5 priority 110 preempt ip virtual-router 6 priority 110 preempt ip redundant-vip 4 192.168.175.34 ip redundant-vip 5 192.168.175.35 ip redundant-vip 6 192.168.175.36 !************************** SERVICE ************************** service L3_ocs1 ip address 192.168.175.24 keepalive frequency 15 keepalive maxfailure 2 active service L3_ocs2 ip address 192.168.175.33 keepalive frequency 15 keepalive maxfailure 2 active service L3_portal1 ip address 192.168.175.23 keepalive frequency 15 keepalive maxfailure 2 active service L3_portal2 ip address 192.168.175.32 keepalive frequency 15 keepalive maxfailure 2 active service L3_sso1 ip address 192.168.175.22 keepalive frequency 15 keepalive maxfailure 2 active service L3_sso2 ip address 192.168.175.31 keepalive frequency 15 keepalive maxfailure 2 active service inetocs1 ip address 192.168.175.24 keepalive port 443 keepalive frequency 15 keepalive type tcp keepalive maxfailure 2 active service inetocs1http ip address 192.168.175.24 keepalive port 80 keepalive frequency 15 keepalive type tcp keepalive maxfailure 2 active service inetocs2 ip address 192.168.175.33 keepalive port 443 keepalive frequency 15 keepalive type tcp keepalive maxfailure 2 active service inetocs2http ip address 192.168.175.33 keepalive port 80 keepalive frequency 15 keepalive type tcp keepalive maxfailure 2 active service inetportal1 ip address 192.168.175.23 keepalive port 443 keepalive frequency 15 keepalive type tcp keepalive maxfailure 2 active service inetportal1http ip address 192.168.175.23 keepalive port 80 keepalive frequency 15 keepalive type tcp keepalive maxfailure 2 active service inetportal1wc ip address 192.168.175.23 keepalive port 9401 keepalive frequency 15 keepalive type tcp keepalive maxfailure 2 active service inetportal2 ip address 192.168.175.32 keepalive port 443 keepalive frequency 15 keepalive type tcp keepalive maxfailure 2 active service inetportal2http ip address 192.168.175.32 keepalive port 80 keepalive frequency 15 keepalive type tcp keepalive maxfailure 2 active service inetportal2wc ip address 192.168.175.32 keepalive port 9401 keepalive frequency 15 keepalive type tcp keepalive maxfailure 2 active service inetsso1 ip address 192.168.175.22 keepalive port 443 keepalive frequency 15 keepalive type tcp keepalive maxfailure 2 active service inetsso2 ip address 192.168.175.31 keepalive port 443 keepalive frequency 15 keepalive type tcp keepalive maxfailure 2 active !*************************** OWNER *************************** owner ocs content L4_ocs_443 protocol tcp port 443 add service inetocs1 add service inetocs2 vip address 192.168.175.36 balance srcip active content L4_ocs_80 protocol tcp port 80 vip address 192.168.175.36 add service inetocs1http add service inetocs2http active content ocs add service L3_ocs1 add service L3_ocs2 vip address 192.168.175.36 active owner portal content L4_portal_443 protocol tcp add service inetportal1 add service inetportal2 port 443 vip address 192.168.175.35 active content L4_portal_80 protocol tcp port 80 vip address 192.168.175.35 add service inetportal1http add service inetportal2http active content L4_portal_9401 protocol tcp vip address 192.168.175.35 port 9401 add service inetportal1wc add service inetportal2wc active content portal add service L3_portal1 add service L3_portal2 vip address 192.168.175.35 active owner sso content L4_sso_443 protocol tcp add service inetsso1 add service inetsso2 vip address 192.168.175.34 port 443 balance destip active content sso vip address 192.168.175.34 add service L3_sso1 add service L3_sso2 active !*************************** GROUP *************************** group ocs add destination service inetocs1http add destination service inetocs2http vip address 192.168.175.36 add destination service inetocs1 add destination service inetocs2 add destination service L3_ocs1 add destination service L3_ocs2 active group portal add destination service inetportal1wc add destination service inetportal2wc vip address 192.168.175.35 add destination service L3_portal2 add destination service L3_portal1 add destination service inetportal2http add destination service inetportal1http add destination service inetportal2 add destination service inetportal1 active group sso add destination service inetsso1 add destination service inetsso2 vip address 192.168.175.34 add destination service L3_sso1 add destination service L3_sso2 active