Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

LDIR 430 - Have to ping real before virtual replies

I have a fairly simple setup that's really starting to frustrate me. 1 LDIR with two real servers and one virtual IP.




FW <-----> LDIR ETH 0 <-----> LDIR <----> LDIR ETH 1 <----> WWW1 & WWW2

In this configuration, if I generate zero IP traffic for a short period of time (60 seconds or so), I cannot connect via http to the VIP for WWW1 & WWW2. If I ping the real IP of one of the the servers, it begins to work and does so until I let it sit for a few minutes, when it starts to fail again. I have a feeling this has something to do with ARP but I'm not sure.

Any suggestions of where to start? Two things to note. WWW1 & WWW2 have two NICs, one going to the LDIR, the other going to a database server and NAS on a private network. Also, there are only hubs (no switches) in this config.

Cisco Employee

Re: LDIR 430 - Have to ping real before virtual replies

look in the firewall for the arp entry for the virtual address.

Does it have an entry ?

Does it point to the LD ?

Do you have 1 IP Address per Nic on the servers, or is it one for the box ?

Is there a backdoor on the network where the backdoor server are located ?