Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

ACE active active service redundancy

Hi,

I want to deploy two ACE modules in redundant configuration. I want ACE_1 to be active for Web-server-LB service and ACE_2 to be active for DNS-server-LB.

All my clients are coming to ACE on a single VLAN. But as per the above configuration, the web traffic of clients should go to ACE_1 and the DNS traffic should go to ACE_2. Can anyone suggest how to achieve this.

thanks

1 ACCEPTED SOLUTION

Accepted Solutions

Re: ACE active active service redundancy

You can share client side vlan with multiple contexts on ACE in routed mode.So If your client vlan is 10 then you can assign same VLAN to both ACE Contexts.

Lets say Vlan10 is using 10.10.10.0/24 subnet.

You can assign two different IP addresses to the two contexts. For example

You can assign 10.10.10.100/24 to WEB-context's VLAN10 interface &

Similarly 10.10.10.200/24 to DNS-context's VLAN10 interface.

When contexts share a VLAN, the ACE assigns a different MAC address to the VLAN on each context

Now if you define VIP-DNS with ip 10.10.10.150/24 in DNS-Context & VIP-WWW with ip 10.10.10.250 in WEB-Context then for request destined to 10.10.10.150 ACE will respond back with MAC address associated with DNS-context. Similary for ARP request asking for 10.10.10.250 ACE will respond back with MAC assigned to WEB-context.

HTH

Syed Iftekhar Ahmed

4 REPLIES

Re: ACE active active service redundancy

You will need to create two contexts (Context-WEB & Context-DNS) such that Context-WEB is active on ACE module 1 & Context-DNS is active on ACE module 2.

Syed Iftekhar Ahmed

New Member

Re: ACE active active service redundancy

HI

thanks, But how would the ACE identify each type of traffic should go to ? Is it by using VLANS?

If so I'm faced with a problem. All of my client traffic are coming to the ACE in one vlan. How should i proceed in this case ?

Re: ACE active active service redundancy

You can share client side vlan with multiple contexts on ACE in routed mode.So If your client vlan is 10 then you can assign same VLAN to both ACE Contexts.

Lets say Vlan10 is using 10.10.10.0/24 subnet.

You can assign two different IP addresses to the two contexts. For example

You can assign 10.10.10.100/24 to WEB-context's VLAN10 interface &

Similarly 10.10.10.200/24 to DNS-context's VLAN10 interface.

When contexts share a VLAN, the ACE assigns a different MAC address to the VLAN on each context

Now if you define VIP-DNS with ip 10.10.10.150/24 in DNS-Context & VIP-WWW with ip 10.10.10.250 in WEB-Context then for request destined to 10.10.10.150 ACE will respond back with MAC address associated with DNS-context. Similary for ARP request asking for 10.10.10.250 ACE will respond back with MAC assigned to WEB-context.

HTH

Syed Iftekhar Ahmed

New Member

Re: ACE active active service redundancy

Just a little caveat...

I believe if you share client-side vlan between multiple contexts, you won't be able to communicate between the contexts.

In another word, no inter-context communication is allowed if the same client-side vlan is used.

290
Views
0
Helpful
4
Replies
CreatePlease login to create content