Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel

Load Balancer Question.

StepConnectionSource IPDestination IP
1Client -> LB10.1.1.1192.168.1.200
2LB -> Server10.1.1.1192.168.1.11
3Server -> LB192.168.1.1110.1.1.1
4LB -> Client192.168.1.20010.1.1.1

In given chart would like to understand 2nd and 3rd step. As per my understanding nat should take place on 2nd step and the real server should get the hit from VIP IP if souce nat is not configured.

Q- what should the source IP will be hitting the actual server ? (STEP 2)

Q- I have also seen we get the actual source initiating the connection hits the server how would that works ?

Q-If souce nat is configured and client reside in same vlan as real servers how would session table look like ?

Also if someone can also explain how does x-forwarding works here.

Thanks

Ajay

network1-steps-254x300.png

1 REPLY
Community Member

Load Balancer Question.

Hi,

Regarding your questions:

Q- what should the source IP will be hitting the actual server ? (STEP 2)

A/ Assuming that you are not doing NAT in your LB, the source IP on the server is going to be the original client IP: 10.1.1.1.

Q- I have also seen we get the actual source initiating the connection hits the server how would that works ?

A/ In that diagram, there are 2 ways for that to happen, 1) the server is using the LB as the default gateway, so all the traffic that is not from the local subnet, is going to be sent to the LB as the next hop, and that will complete the flow on the LB. 2) there is another L3 device on the server subnet either using routing or PBR in order to send the reply back to the LB.

Q-If souce nat is configured and client reside in same vlan as real servers how would session table look like ?

A/

1Client -> LB192.168.1.50192.168.1.200
2LB -> Server192.168.1.201192.168.1.11
3Server -> LB192.168.1.11192.168.1.201
4LB -> Client192.168.1.200192.168.1.50

Where 192.168.1.201 is my NAT IP.

Regarding the X-Forwarder-For, usually this is used when you are using NAT, so the client IP is included on the HTTP headers, so the servers can keep track of the client IP's, but it depends on the LB and if the feature is supported, also you need to take into account the protocol you are load balancing, it works for HTTP.

Hope it helps.

250
Views
4
Helpful
1
Replies
CreatePlease to create content