Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Difference between ACE configuration

Hi,

I have two ACE that are configured both in One Arm Mode but using diffent configuration

In the first case I have

Firewall ---------Switch ---------------- Load Balancer ---

                                     X.X.X.X                                Y.Y.Y.Y

X.X.X.X. is a transfer network used to allow the LB to route the Server Traffic back to the switch

Y.Y.Y.Y is the VIP network. In the LB no vlan interfaces have been created using IP in this network.

In the second case I have:

Firewall ---------Switch ---------------- Load Balancer

                                      Z.Z.Z.Z        

                     

Z.Z.Z.Z is the VIP Newtwork and is used for Server Traffic as well.

Make it sense for you?

Which are vantages and disvantages of the proposed configuration?

Thanks.

Everyone's tags (4)
1 REPLY
Bronze

Difference between ACE configuration

Fabio-

  It doesn't matter in either one.  You can either send traffic directly to an ACE vip as a L2 adjacent address to the upstream gateway, or you could route it in (you could even use RHI on ACE to simplify configuration)  The only difference is the MAC address the traffic is sent to.  Otherwise, there are no performance or other reasons to choose either design.

Regards,

  Chris Higgins

  ANS TAC Escalation

350
Views
0
Helpful
1
Replies