Re: CSM and direct access to real servers/port

jmfranco · ‎02-12-2006

We have two Cat6506+CSM+SSLM with load balanced HTTP and HTTPS webs.

Is there anyway to allow direct access to real servers, using load balanced port? At this momment we have configured direct access with predictor forward to real servers for administrative tasks (telnet, ftp, tftp). We want managment stations out of load balancers environment could to reach real web servers and loab balanced port directly and test if webservers are operational.

Gilles Dufour · ‎02-13-2006

you need to use the predictor forward again.

Nothing different.

vserver direct-acces

vip x.x.x.0/24 any

serverfarm predictor_forward

ins

Regards,

Gilles.

dumlutimuralp · ‎02-13-2006

Hi guys. does direct access work for you ?

Gilles Dufour · ‎02-13-2006

direct access as configured in my previous post works fine.

G.

jmfranco · ‎02-13-2006

Hi guys, thanks for your answers.

I have simmilar config, but it doesn´t work.

Take this example, one of our load balanced webs.

Virtual IP :192.168.200.109

Load balanced port: 80

Real Server 1 :192.168.202.109

Real Server 2 : 192.168.203.109

We have the following configuration for direct access to real servers:

vserver DIRECTO_202

virtual 192.168.202.0 255.255.254.0 any

vlan 200

serverfarm ACCESO_DIRECTO

persistent rebalance

inservice

serverfarm ACCESO_DIRECTO

nat server

no nat client

predictor forward

This configuration works fine to reach real servers with Telnet, FTP, TFTP,... but we try with explorer http://192.168.202.109 or http://192.168.203.109, it doesn´t work. It seems load balancer hides real ip address when you try to reach load balanced port.

¿how can we do it?

Greetings.