Attached is my current configuration. This is working for 99% of our clients, however we have one group of clients coming through a proxy server and unpredictable stickiness results are happening. Sometimes they will be able to navigate through the site without any problems and at other times, it will lose the sticky connection for no apparent reason.
Traffic peaks at about 600 concurrent sessions for the DB heavy Java App running on Tomcat. As you can see from the config file I use the built in tomcat session cookie in association with the jvmRoute attribute to configure my stickiness. I used to use Apaches mod jk load balancer and these clients didn't have a problem with this, but with this configuration on the CSS they are having these issues.
Any help would be greatly appreciated, as I am at a loss and my clients are getting upset.
the problem is that a proxy most often multiplex many clients into one connection.
The CSS will normally parse every request and forwards it to the appropriate server.
However, if the proxy connection stays idle for a while, the CSS will keep the connection open but it will stop parsing requests and send all clients to the same server until the connection is finally cleaned by the css.
The solution is to configure a 'flow-timeout-multiplier 20' under your content rule.
This should help.
If not 100% fixed, try to increae the value from 20 to 100.
Why do you need native HA: The native HA feature allows two Cisco DCNM
appliances to run as active and standby applications, with their
embedded databases synchronized in real time. Therefore, when the active
DCNM is not functioning, the standby DCNM will...
This document will provide screenshots to outline the steps to setup
TACACS+ configuration to ACI and also the configuration required on
Cisco ACS server. Please find the official Cisco guide for configuring
TACACS+ Authentication to ACI:
Is it supported or NOT supported? It's a frequently asked question.
Before APIC, release 2.3(1f), transit routing was not supported within a
single L3Out profile. In APIC, release 2.3(1f) and later, you can
configure transit routing with a single L3Out pr...