Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
890
Views
0
Helpful
4
Replies

ACE bridge mode config not working

Go to solution
raza555
Level 3
Level 3

‎02-23-2015 03:39 PM

Hi,

I have attached ACE30 configuration, I am unable to establish connection to the VIP.

From the ACE: I can see the ARP of all servers and VIPS. I can ping GW,Server & VIP.

From 6500 Switch: I cannot see the ARP of Servers, VIP & GW. I am only able to ping the servers(164.x.x.106/107), but not the ACE contect VIP (164.x.x.103) or GW (164.x.x..101)

From FWSM:I can ping GW,Server but not the VIP. Rules allow for ping/443 from outside and firewall is acting as transparent firewall.

Any help will be very much appreciated.

Thanks

 

 

 

Labels:
Preview file
3 KB
0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
Kanwaljeet Singh
Cisco Employee
Cisco Employee

‎02-24-2015 06:53 AM

Hi Rizwan,

You have mentioned ACE in bridge mode but according to the configuration it seems to be in the routed mode. Kindly check on the  toplogy. The configuration on ACE looks fine. Ensure that proper routing is in place.

Regards,

Kanwal

Note: Please mark answers if they are helpful.

 

View solution in original post

0 Helpful

Go to solution
Kanwaljeet Singh
Cisco Employee
Cisco Employee
In response to raza555

‎02-25-2015 05:53 AM

Hi Rizwan,

I don't know your topology. But if  the real server gateway is not loadbalancer, the return traffic will not go through the LB and it will be a problem due to asymmetric routing. To avoid that you would need to do source natting on LB so that return traffic comes back to ACE or you can have routing on the server itself but normally the best option is to do source natting or make ace as your default gateway.

Let me know if you have any questions.

Regards,

Kanwal

Note: Please mark answers if they are helpful.

View solution in original post

0 Helpful
4 Replies 4

Go to solution
Kanwaljeet Singh
Cisco Employee
Cisco Employee

‎02-24-2015 06:53 AM

Hi Rizwan,

You have mentioned ACE in bridge mode but according to the configuration it seems to be in the routed mode. Kindly check on the  toplogy. The configuration on ACE looks fine. Ensure that proper routing is in place.

Regards,

Kanwal

Note: Please mark answers if they are helpful.

 

0 Helpful

Go to solution
raza555
Level 3
Level 3
In response to Kanwaljeet Singh

‎02-25-2015 04:51 AM

Hello kanwal,

Thanks for advise, its a routing issue. Please advise that what should be the default gateway of the server as per my attached ACE config.

Thanks.

 

 

 

0 Helpful

Go to solution
Kanwaljeet Singh
Cisco Employee
Cisco Employee
In response to raza555

‎02-25-2015 05:53 AM

Hi Rizwan,

I don't know your topology. But if  the real server gateway is not loadbalancer, the return traffic will not go through the LB and it will be a problem due to asymmetric routing. To avoid that you would need to do source natting on LB so that return traffic comes back to ACE or you can have routing on the server itself but normally the best option is to do source natting or make ace as your default gateway.

Let me know if you have any questions.

Regards,

Kanwal

Note: Please mark answers if they are helpful.

0 Helpful

Go to solution
raza555
Level 3
Level 3
In response to Kanwaljeet Singh

‎02-26-2015 08:04 AM

Thanks again Kanwal,

 

1) Server DG gateway should be ACE interface IP Address or its VIP IP Address?

2) Can I access the server individual IP Address as well?

Thanks

 

 

 

0 Helpful
Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card