Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
343
Views
0
Helpful
1
Replies

ACE to bypass IPSec traffic

thedinuka
Level 1
Level 1

‎11-11-2008 04:35 AM

HI All,

we are getting ready to do a POC with ACE, Hurray !!!!!!!!!

One problem though. The customer (who is a service provider) is going to loadbalance traffic to a web proxy, but wants to bypass IPSec VPN traffic from getting loadbalanced to proxies.

I think we can do this if the clients are using IPSec tunnel mode, but it seems there would be a problem in identifying the traffic if the clients are using IPSec transport mode or transparent tunneling. Any idea how i can prevent all of the VPN traffic from going to the proxies ?

Thanks

Labels:
0 Helpful
1 Reply 1

Gilles Dufour
Cisco Employee
Cisco Employee

‎11-12-2008 12:40 AM

If you only loadbalance traffic with destination port 80 or port 8080 than there is no problem.

I don't think ipsec would use those ports.

Gilles.

0 Helpful
Customers Also Viewed These Support Documents