Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

ACE to bypass IPSec traffic

HI All,

we are getting ready to do a POC with ACE, Hurray !!!!!!!!!

One problem though. The customer (who is a service provider) is going to loadbalance traffic to a web proxy, but wants to bypass IPSec VPN traffic from getting loadbalanced to proxies.

I think we can do this if the clients are using IPSec tunnel mode, but it seems there would be a problem in identifying the traffic if the clients are using IPSec transport mode or transparent tunneling. Any idea how i can prevent all of the VPN traffic from going to the proxies ?

Thanks

1 REPLY
Cisco Employee

Re: ACE to bypass IPSec traffic

If you only loadbalance traffic with destination port 80 or port 8080 than there is no problem.

I don't think ipsec would use those ports.

Gilles.

170
Views
0
Helpful
1
Replies