Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
879
Views
0
Helpful
2
Replies

ACE Module & FWSM

pemalcoun
Level 1
Level 1

‎02-06-2013 06:18 AM

Dear Gents,

Attached is the current setup & configuration for both ACE & FWSM.

we can ping the VIP from the user side, but we are not able to open the web application using the VIP.

Appreciate your kind support to solve the issue when trying to open the application using the VIP.

Best Regards,

Labels:
Preview file
115 KB
0 Helpful
2 Replies 2

pemalcoun
Level 1
Level 1

‎02-09-2013 11:34 PM

Dear All,

I changed the setup to one armed mode and modifed the configuration and it is working fine.

BR

0 Helpful

subabu080208
Level 1
Level 1
In response to pemalcoun

‎02-11-2013 12:37 AM

Pierre this is babu.

     Can you please forward ACE ONE ARM MODE current configuration which is working fine. Check my configuration and please replay if any modification require.

boot system image:c4710ace-mz.A4_2_0.bin

interface gigabitEthernet 1/1

switchport access vlan 255

no shutdown

interface gigabitEthernet 1/2

switchport access vlan 110

no shutdown

interface gigabitEthernet 1/3

shutdown

interface gigabitEthernet 1/4

shutdown

access-list ALL line 8 extended permit ip any any

access-list ALL line 16 extended permit icmp any any

probe http HTTP

port 80

interval 20

passdetect interval 40

receive 3

expect status 0 499

connection term forced

open 1

probe icmp PING

description Probe PING

interval 2

faildetect 2

passdetect interval 2

passdetect count 2

receive 1

probe snmp SNMP-PROBE

description SNMP-PROBE

interval 15

passdetect interval 10

version 2c

community MODA-MSD-RW

oid .1.3.6.1.2.1.4.3.0

   type absolute max 1000000000

weight 6000

rserver host SERVER1

description msd-hq-sp01

ip address 10.0.160.14

conn-limit max 2000000 min 1500000

rate-limit connection 100000

rate-limit bandwidth 10000000

inservice

rserver host SERVER2

description msd-hq-sp02

ip address 10.0.160.15

conn-limit max 2000000 min 1500000

fail-on-all

weight 20

inservice

rserver host SERVER3

conn-limit max 2000000 min 1500000

fail-on-all

weight 30

inservice

rserver host SERVER4

conn-limit max 2000000 min 1500000

fail-on-all

weight 40

inservice

serverfarm host MoDA-MSD-SFARM

description MoDA-MSD-SERVERS

probe PING

rserver SERVER1 80

   conn-limit max 2000000 min 1500000

   rate-limit connection 100000

   rate-limit bandwidth 5000000

   inservice

rserver SERVER2 80

   conn-limit max 2000000 min 1500000

   rate-limit connection 100000

   rate-limit bandwidth 5000000

   inservice

sticky ip-netmask 255.255.255.255 address source STKY_WEB1

timeout 60

replicate sticky

serverfarm MoDA-MSD-SFARM

class-map match-all frontend

2 match virtual-address 10.0.160.17 tcp eq www

class-map type management match-any remote_access

2 match protocol xml-https any

3 match protocol icmp any

4 match protocol telnet any

5 match protocol ssh any

6 match protocol http any

7 match protocol https any

8 match protocol snmp any

policy-map type management first-match remote_mgmt_allow_policy

class remote_access

   permit

policy-map type loadbalance first-match frontend

class class-default

   serverfarm MoDA-MSD-SFARM

policy-map multi-match CLIENT-VIPS

class frontend

   loadbalance vip inservice

   loadbalance policy frontend

   loadbalance vip icmp-reply

   nat dynamic 1 vlan 110

class class-default

interface vlan 110

ip address 10.110.10.101 255.255.255.0

access-group input ALL

nat-pool 1 10.110.10.200 10.110.10.200 netmask 255.255.255.0 pat

service-policy input CLIENT-VIPS

service-policy input remote_mgmt_allow_policy

no shutdown

interface vlan 255

ip address 10.0.255.245 255.255.255.0

no shutdown

ft interface vlan 115

ip address 10.1.1.1 255.255.255.0

peer ip address 10.1.1.2 255.255.255.0

no shutdown

ft peer 1

heartbeat interval 300

heartbeat count 20

ft-interface vlan 115

query-interface vlan 110

ft group 1

peer 1

priority 120

associate-context Admin

inservice

ip route 0.0.0.0 0.0.0.0 10.110.10.254

snmp-server community MODA-MSD-RO group Network-Monitor

snmp-server host 10.0.160.144 traps version 2c MODA-MSD-RW

snmp-server enable traps snmp coldstart

snmp-server enable traps virtual-context

snmp-server enable traps license

snmp-server enable traps slb vserver

snmp-server enable traps slb real

snmp-server enable traps syslog

snmp-server enable traps snmp authentication

snmp-server enable traps snmp linkup

snmp-server enable traps snmp linkdown

username admin password 5 $1$D1e1pS1d$KBuTV0Oe195u3b3dW9RQF/ role Admin domain

default-domain

username www password 5 $1$JfHnQdU/$0FLEMgeJIuAzIKGc3Xv.p1 role Admin domain de

fault-domain

ssh key rsa 1024 force

Thank you,

Babu.S

0 Helpful
Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card