cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1002
Views
0
Helpful
2
Replies

Cisco ACE 4710 - Question

dolphinfitness
Level 1
Level 1

Sorry if this may come across as a stupid question as I am quite new to the Cisco ACE 4710.

I have configured a Cisco ACE 4710 and it is working perfectly fine, and load balancing between 3 different servers to host our e-commerce website; but at the moment I have only managed to get this working if the ACE unit is set as the default gateway for all the servers in the pool (as below).

OUTSIDE <=> FIREWALL <=> ACE 4710 <=> SERVER POOL

We have recently added another internet connection to our network and ideally I need to have the severs in the server pool to use this second router as their default gateway, in a way that only e-commerce related requests would utilise the first link onto the ACE 4710 and the rest of the traffic (like updates, etc onto the webservers) would go through this second recently added like (as below).

OUTSIDE => FIREWALL (1) => ACE 4710 <=> SERVER POOL <=> FIREWALL (2) => OUTSIDE

Our current configuration only seems to work for as long as the Cisco ACE 4710 is set as the default gateway for the web servers; is there anyway that I can set up so that the default gateway for the web servers is different to the Cisco ACE 4710, in order to keep the first link for the e-commerce only traffic handled through the ACE, and then to use the second link for general internet traffic through another route.

1 Accepted Solution

Accepted Solutions

ajayku2
Cisco Employee
Cisco Employee

Hi,

You can use source NAT on ACE. That way you dont have to point the default gateway to ACE. The logic is after NAT the communication becomes local and in that case server does not need a default gateway to reply.

You can refer the following link :

http://www.cisco.com/en/US/products/hw/modules/ps2706/products_configuration_example09186a00809c3041.shtml

In case if you want to log the client IP address on the server then you have to insert x-forward header.

refer to the following link for x-forward configuration.

http://www.cisco.com/en/US/products/hw/modules/ps2706/products_configuration_example09186a00809c3041.shtml

regards,

Ajay Kumar

View solution in original post

2 Replies 2

ajayku2
Cisco Employee
Cisco Employee

Hi,

You can use source NAT on ACE. That way you dont have to point the default gateway to ACE. The logic is after NAT the communication becomes local and in that case server does not need a default gateway to reply.

You can refer the following link :

http://www.cisco.com/en/US/products/hw/modules/ps2706/products_configuration_example09186a00809c3041.shtml

In case if you want to log the client IP address on the server then you have to insert x-forward header.

refer to the following link for x-forward configuration.

http://www.cisco.com/en/US/products/hw/modules/ps2706/products_configuration_example09186a00809c3041.shtml

regards,

Ajay Kumar

Thank you Ajay,

Much appreciated.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: