This is regarding the ace-TFTP server load balancing, the ace will load balance on port 69.We have tried to do the same, its seems to the ACE getting the TFTP request but not able to reply back to the client, also we are also probing the same on port number 69.If any one face this issue, please share.
TFTP is little complex. It uses two flows and unfortunately we dont have tftp inpect/fix available in ACE
1) Client initiate the session using UDP flow to port 69 from a random port, lets say X
2) server replies with data, opening a new UDP flow towards the client. Server's source port is random, while destination port for this response is X .
3) Now ACE has no clue about TFTP flows (lack of tftp fix/inspect), hence client will recieve tftp response from Real server directly.Since the response is not from VIP (where client sent the request),Client will drop the response
For TFTP we will have to source nat the server response using VIP (where the initial request was sent).
I have written a sample config keeping the above tftp process in mind and I think it will work.
In this config vlan 20 is the client VLAN where VIP is defined and VLAN 30 is the server vlan where the REAL tftp servers reside.
Since this TFTP workaround requires Source NAT using VIP address , this config will only work for ACE 2.X code ( In previous codes using VIP for source NAT was not supported)
Try it if you can
rserver host tftp-server1
ip address 10.10.10.101
rserver host tftp-server2
ip address 10.10.10.102
serverfarm host TFTP-SFARM
class-map match-any TO-TFTP-VIP
description class-map for client to TFTP VIP traffic
match virtual-address 192.168.0.100 udp eq 69
class-map match-any FROM-TFTP-REAL
description class-map from tftp server to client
match virtual-address 0.0.0.0 0.0.0.0 udp eq any
policy-map type loadbalance first-match TFTP-POLICY
Introduction This article will help you understand the steps on how to
download the UCS licenses from the Cisco Systems website and then
installing it on the UCS. The redacted (blue lines) just covers up
certain numbers for privacy please do not take them...
Introduction This article will help you understand and educate the
customer on how to clear their "expired licenses"
(license-graceperiod-expired) from their UCS-M. If a customer just
purchased a license and needs a step by step guide on how to download
Introduction Prepositioning is a powerful tools on the WAAS platform but
it is not always easy to figure out why your jobs are failing when
trying to retrieve the files.Here is a method that should help you to
figure out the reason why they are not succes...