Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

load-balancing inbound sftp connections with ACE

Hi,

Can anyone share experiences or any info relating to issues that might be encountered when load-balancing sftp protocol?

The goal is to distribute inbound file deposits evenly across SFTP servers.

High-level Overview

Clients -> Internet -> Tier-1 Firewall -> ACE Load-balancer -> SFTP Servers

Many Thanks

4 REPLIES

Re: load-balancing inbound sftp connections with ACE

SFTP is nothing but SSH. It uses a single connection. There are no issues loadbalancing it using traditional Layer 4 load balancing.

So you are good.

On the other hand FTP over SSL (FTPS) can neither offloaded nor loadbalanced using ACE.

FTPS uses multiple channels and Since the control channel is encrypted, ACe is not able to get the port numbers for the data connections.

HTH

Syed Iftekhar Ahmed

New Member

load-balancing inbound sftp connections with ACE

I would greatly appreciate if you can provide the following documents or links leading to any of these. I have been trying to configure ACE load balancing for SFTP and FTPS protocol.

You sttaed that FTPS can not be load balanced using ACE. Any official doc for this from Cisco.

Really appreciate it!

Silver

load-balancing inbound sftp connections with ACE

Use a L3 VIP with a sticky group based on source IP and use L4 load balancing; it may work only with FTPS in passive mode.

New Member

load-balancing inbound sftp connections with ACE

How about FTPS in Active mode. That is what I am trying to achieve.

1807
Views
5
Helpful
4
Replies