I have configured Cisco ACE 4710 in one-arm mode(physically it is in DMZ segment). I have to load balance OWA servers using ACE, these servers are physically on inside of firewall.
Now, the load balancer is working fine with one arm mode and source nat. I got a requirement from client that, they need to terminate SSL connections in ace , then ace to servers should be clear text (SSL OFFLOADING).
Please anyone suggest me, if there any limitations in SSL offloading with one arm mode??? if not, how can i confiugre SSL termination??
Topology & Design:
Two ACI fabrics
Stretching VLANs using OTV
Both fabrics are advertising BD subnets into same routing domain
Some BDs(or say VLANs) are stretched, but some are not.
Endpoints can move betwee...
VMware Trunk Port Group is supported from ACI version 2.1
VMM integration must be configured properly
ASA device package must be uploaded to APIC
ASAv version must be compatible with ACI and device package version
Topology &Design:Traffic flow within same fabric:Endpoint moves to Fabric-2Bounce Entry Times OutTraffic Black-holedSummarySolutionAppendix:
In the Previous articles of ACI Automation, we are using Postman/Newman a...