We have two Cat6506+CSM+SSLM with load balanced HTTP and HTTPS webs.
Is there anyway to allow direct access to real servers, using load balanced port? At this momment we have configured direct access with predictor forward to real servers for administrative tasks (telnet, ftp, tftp). We want managment stations out of load balancers environment could to reach real web servers and loab balanced port directly and test if webservers are operational.
We have the following configuration for direct access to real servers:
virtual 192.168.202.0 255.255.254.0 any
no nat client
This configuration works fine to reach real servers with Telnet, FTP, TFTP,... but we try with explorer http://192.168.202.109 or http://192.168.203.109, it doesn´t work. It seems load balancer hides real ip address when you try to reach load balanced port.
Topology & Design:
Two ACI fabrics
Stretching VLANs using OTV
Both fabrics are advertising BD subnets into same routing domain
Some BDs(or say VLANs) are stretched, but some are not.
Endpoints can move betwee...
VMware Trunk Port Group is supported from ACI version 2.1
VMM integration must be configured properly
ASA device package must be uploaded to APIC
ASAv version must be compatible with ACI and device package version
Topology &Design:Traffic flow within same fabric:Endpoint moves to Fabric-2Bounce Entry Times OutTraffic Black-holedSummarySolutionAppendix:
In the Previous articles of ACI Automation, we are using Postman/Newman a...