Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

CSS - supporting multiple VLANs

Currently we have our CSS running in a single VLAN. We would like to be able to provide load balancing for server farms based in multiple VLANs, but not permit servers from each VLAN to traverse the CSS to communicate with each other. We would also need servers to see the client source IP (i.e group configuration not suitable).

Is there a way to do this?

1 REPLY
Cisco Employee

Re: CSS - supporting multiple VLANs

Yes,

You could accomplish that by the use of ACLs on the CSS, then you can configure the CSS to allow deny traffic destined to server a from server b but allow any other source to reach server a.

At the same time you can accomplish source NATing using ACLs and a group with no other configuration than the VIP.

Perhaps I could help you in more detail with the configuration if you give me an example of your specific design.

138
Views
0
Helpful
1
Replies
CreatePlease login to create content