We purchased a css11501 to load balance traffic between a handful of servers that run a telnet-based application. As I understand it, the VIP is usually on a seperate IP subnet than the server real addresses. Are there any disadvantages of keeping the VIP and server real addys on the same subnet (if this can even be done)? If we do this, than any non-loadbalanced traffic would avoid the css.
The issues with having the VIP and servers on the same subnet are the same as running in "one-arm" mode, since that's effectively the config that you need to use.
Main issues are having to NAT the incoming connections source addresses, and performance constraints around having traffic ingress and egress the same port on the CSS. (But I've got to think that the 11501 was brought to market with this design in mind with the single gigabit port.)
As long as your servers don't need visibility to the actuall IP addresses for incoming connections, this should work fine. Just remember to setup your NAT groups.
VMware Trunk Port Group is supported from ACI version 2.1
VMM integration must be configured properly
ASA device package must be uploaded to APIC
ASAv version must be compatible with ACI and device package version
In the Previous articles of ACI Automation, we are using Postman/Newman as the Rest API tool to automate the ACI Configuration.
In this article I’m going to discuss on usin...
One of the first steps in building your ACI Fabric is to go through Fabric Discovery. While Fabric Discovery is usually a straightforward process, there are various issues that may prevent you from discovering an ACI switch. This article wil...