That's right , i've done.

But I has a problem. I configured vserver and CE serverfarm, but i can't telnet or ssh to CEs for management because i configued CEs on CSM server side.

Can you explain for me a best network topology for our case?

your topology is correct.

The problem is your config.

If you need access to the CE ip addresses, you need to configure a vserver to allow this traffic.

Something like

serverfarm FORWARD

no nat server

no nat client

predictor forward

!

vserver access2ce

vip x.x.x.0/24 any

serverfarm FORWARD

ins

Replace x.x.x.0/24 with the subnet used by the CE.

Regards,

Gilles.

Thanks for rating this answer.

I've configured all. It's running ok now. Thanks for all your help.

But We have other problem come from our Custumer.

Our custumer needs to access to website : http://Channel.telerate.com.sg.

After authenticate, this website would download java streaming from port 6080 and 14000. But after I take CEs working, our custumer can not access to use that website.

Can someone help me again?

start by capturing a sniffer trace and see what happens with connections to port 6080 and 14000.

Do you have a vserver to catch and allow this traffic ?

Thanks in advance for rating my answers.

Gilles.

This is my config:

vserver FROMCACHE

virtual 0.0.0.0 0.0.0.0 tcp www

vlan 320

serverfarm FWINT-SEC-SF

persistent rebalance

parse-length 2000

inservice

vserver TRANSPARENT

virtual 0.0.0.0 0.0.0.0 tcp www

vlan 3

serverfarm CACHE

persistent rebalance

parse-length 2000

slb-policy CACHE-POLICY

inservice

Can you talk more clearly: " sniffer trace" ?