Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1727
Views
0
Helpful
3
Replies

ACE load balance based on Source IP Address

azar
Level 1
Level 1

‎01-20-2012 06:54 AM

Hi Cisco  Support,
I have question  related to Cisco ACE behavior in term to taking a decision based on source  address

I currently have two  servers sits behind ACE part of one server farm, these servers are load balanced  via one VIP on ACE module and every things looks fine.

Now service  owners want to replace these old servers with new hardware hence before the  migration we need to make sure these new servers are working as required standard hence  need to create a testing scenario for new servers along with old server. The problem is that number of third party partners are accessing existing servers by hitting VIP on ace and we  can't engage all our partner to participate in this test therefore decided to  engage only one partner to carry our test with us.

For that reason can  we some how configure the ACE so when packet arrive on ACE from one test partner  mentioned above, ACE send only that partner's traffic based on it's source address  (define via class/policy map on ACE if possible) towards new servers in the existing server  farm and not to the old server in the same server farm.

Thanks for your  support
Labels:
0 Helpful
3 Replies 3

Marvin Rhoads
Hall of Fame
Hall of Fame

‎01-20-2012 07:48 AM

One method would be to create a Layer 7 class map based on source IP address. You then make the policy map action to send [test partner] requests to [new serverfarm].

Please see the Server Load Balancing Guide for your particular model for details on L7 class maps and policy maps.

0 Helpful

pablo.nxh
Level 3
Level 3

‎01-20-2012 01:47 PM

Hi,

Just to put some config sample that might help you to get this done.

First create the new rservers and include them under a new serverfarm (New-APP)/

serverfarm host Webfarm

  rserver SVR1

    inservice

  rserver SVR2

    inservice

serverfarm host New-APP

  rserver New-1

    inservice

  rserver New-2

    inservice

- Same VIP already working.

class-map match-all VIP-HTTP

  2 match virtual-address 10.10.10.10 tcp eq www

- Create a new class that will include your partner's IP(s).

class-map type http loadbalance match-any 3rd-Party

  2 match source-address 200.200.200.1 255.255.255.255 

  3 match source-address 200.200.200.10 255.255.255.255 

Modify your current first-match policy to put the new class on top so that all the traffic matched by the statement above (IP) will be redirected to the new farm with the new APP, any other traffic that does not match the "rule" will be sent to the old serverfam with the old app.

policy-map type loadbalance first-match L7-SLB

  class 3rd-Party

    serverfarm New-APP

  class class-default

    serverfarm Webfarm

Since you already have LB working then this is it, nothing needs to be added under the multi-match policy nor interface.

HTH

__ __

Pablo

0 Helpful

azar
Level 1
Level 1
In response to pablo.nxh

‎01-24-2012 01:28 AM

Thanks for this, will try the above solution

0 Helpful
Customers Also Viewed These Support Documents