Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Cisco ACE 4710 - Question

Sorry if this may come across as a stupid question as I am quite new to the Cisco ACE 4710.

I have configured a Cisco ACE 4710 and it is working perfectly fine, and load balancing between 3 different servers to host our e-commerce website; but at the moment I have only managed to get this working if the ACE unit is set as the default gateway for all the servers in the pool (as below).

OUTSIDE <=> FIREWALL <=> ACE 4710 <=> SERVER POOL

We have recently added another internet connection to our network and ideally I need to have the severs in the server pool to use this second router as their default gateway, in a way that only e-commerce related requests would utilise the first link onto the ACE 4710 and the rest of the traffic (like updates, etc onto the webservers) would go through this second recently added like (as below).

OUTSIDE => FIREWALL (1) => ACE 4710 <=> SERVER POOL <=> FIREWALL (2) => OUTSIDE

Our current configuration only seems to work for as long as the Cisco ACE 4710 is set as the default gateway for the web servers; is there anyway that I can set up so that the default gateway for the web servers is different to the Cisco ACE 4710, in order to keep the first link for the e-commerce only traffic handled through the ACE, and then to use the second link for general internet traffic through another route.

1 ACCEPTED SOLUTION

Accepted Solutions
Cisco Employee

Cisco ACE 4710 - Question

Hi,

You can use source NAT on ACE. That way you dont have to point the default gateway to ACE. The logic is after NAT the communication becomes local and in that case server does not need a default gateway to reply.

You can refer the following link :

http://www.cisco.com/en/US/products/hw/modules/ps2706/products_configuration_example09186a00809c3041.shtml

In case if you want to log the client IP address on the server then you have to insert x-forward header.

refer to the following link for x-forward configuration.

http://www.cisco.com/en/US/products/hw/modules/ps2706/products_configuration_example09186a00809c3041.shtml

regards,

Ajay Kumar

2 REPLIES
Cisco Employee

Cisco ACE 4710 - Question

Hi,

You can use source NAT on ACE. That way you dont have to point the default gateway to ACE. The logic is after NAT the communication becomes local and in that case server does not need a default gateway to reply.

You can refer the following link :

http://www.cisco.com/en/US/products/hw/modules/ps2706/products_configuration_example09186a00809c3041.shtml

In case if you want to log the client IP address on the server then you have to insert x-forward header.

refer to the following link for x-forward configuration.

http://www.cisco.com/en/US/products/hw/modules/ps2706/products_configuration_example09186a00809c3041.shtml

regards,

Ajay Kumar

New Member

Cisco ACE 4710 - Question

Thank you Ajay,

Much appreciated.

321
Views
0
Helpful
2
Replies