10-27-2011 01:12 PM
Hi folks,
Some assistance if you have the time please.
I'm running an ACE 4700 appliance, i have a 4 server serverfarm setup, non-ssl, with leastconns predictor...i have tried round robin as well, and nothing...
I've taken each rserver out of service, and placed back in, and still, the traffic is handed off only to 1 server...
I do have sticky persistence (IP subnet)....
I'm not sure what i'm missing...
thanks in advance.
10-27-2011 04:31 PM
Hi Bruce,
From your description seems like the problem might be related to NAT or a Proxy in front of the clients, if that's the case you'll need to consider another sticky methods as the clients will show up with the same IP address all the time to ACE.
HTH
__ __
Pablo
10-27-2011 11:24 PM
Probably.
This is called a "mega proxy" issue. For generic protocols it cannont be solved if persistence is required. For HTTP use cookie based persistence instead.
10-28-2011 04:23 AM
well,
here is the overall infrastructructure:
internet traffic ---> FW ---> nat public to private of vip of ACE module --> Rservers (Web) ---> FW ---> 4700 vip ---> to
the Rservers i'm having issues with....
the only NAT is further upstream on the FW.
This is SMTP traffic not HTTP...
bruce
10-28-2011 05:32 AM
Can you give us your config ?
10-28-2011 05:54 AM
I'm afraid i cannot...I know, makes it that much harder to assist...
bruce
10-28-2011 05:59 AM
At least the sticky group part ?
I suspect an issue there.
10-28-2011 06:04 AM
sticky ip-netmask 255.255.255.255 address source IP_STICKY1
timeout 10
serverfarm SERVERFARM1
now that i'm looking at that, is that right? a /32 source address statement?
10-28-2011 06:22 AM
To me it's ok.
You can see the content of the sticky table with a "show sticky database" command
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide