access-list ALLOW-TRAFFIC line 1 extended permit ip any any
access-list ALLOW-TRAFFIC line 2 extended permit icmp any any
access-list ICMP_ACL line 10 extended permit icmp any any

robe http HTTP_80
probe icmp ICMP
  interval 15
  passdetect interval 60
probe tcp TCP_80
  interval 20
  passdetect count 1
probe http TDB-ServerAvailability-80
  description Probe for TDB Servers
  interval 5
  passdetect interval 5
  receive 5
  request method head url //Monitoring/Monitor.aspx
  expect status 200 200

rserver host NETMAN1LDS_TEST
  description test real server
  ip address 192.168.239.12
  probe TCP_80
  inservice
rserver redirect TDBWEB-Redirect
  description Redirect to https://abc.abc.com
  webhost-redirection https://abc.abc.com/
  inservice
rserver host TDBWEB1LV
  description TDBWEB1LV real server
  ip address 192.168.225.11
  probe TDB-ServerAvailability-80
  inservice
rserver host TDBWEB2LV
  description TDBWEB1LV real server
  ip address 192.168.225.12
  probe TDB-ServerAvailability-80
  inservice
rserver host TDBWEB3LV
  description TDBWEB1LV real server
  ip address 192.168.225.13
  probe TDB-ServerAvailability-80
  inservice

serverfarm host TDB_SF
  rserver TDBWEB1LV 80
    inservice
  rserver TDBWEB2LV 80
    inservice
  rserver TDBWEB3LV 80
    inservice
serverfarm redirect TDB_SF_Redirect
  description http to https redirect for TDB
  rserver TDBWEB-Redirect
    inservice
serverfarm host TEST_SF
  rserver NETMAN1LDS_TEST 80
    inservice

ssl-proxy service TDB-Web-SSL-PROXY
  key abc.abc.ace.pem
  cert abc.abc.ace.pem
  chaingroup TDB-chain
ssl-proxy service TEST_ORION_PROXY
  key healthspace-2048-key
  cert HealthspaceSignedCert-V2
  chaingroup Verisign-generic

class-map match-all ICMP_INSPECT_CLASS
  2 match access-list ICMP_ACL
class-map match-any NAT_CLASS
  2 match access-list NAT_ACCESS
class-map match-all TDB-Web-80
  2 match virtual-address 10.97.88.12 tcp eq www
class-map match-all TDB_443_CM
  2 match virtual-address 10.97.88.12 tcp eq https
class-map match-all TDB_CM
  2 match virtual-address 10.97.88.13 tcp eq www
class-map match-all TEST_ORION_443_CM
  2 match virtual-address 192.168.173.130 tcp eq https
class-map match-all TEST_ORION_CM
  2 match virtual-address 192.168.173.130 tcp eq www

policy-map type management first-match mgmt-pm
  class class-default
    permit

policy-map type loadbalance first-match TDB_PM
  class class-default
    serverfarm TDB_SF
policy-map type loadbalance first-match TDB_PM-80
  class class-default
    serverfarm TDB_SF_Redirect
policy-map type loadbalance first-match TEST_ORION_PM
  class class-default
    serverfarm TEST_SF

policy-map multi-match ICMP_INSPECT_POLICY
  class ICMP_INSPECT_CLASS
    inspect icmp error
policy-map multi-match NAT_POLICY
  class NAT_CLASS
    nat dynamic 1 vlan 300
  class TEST_ORION_CM
    loadbalance vip inservice
    loadbalance policy TEST_ORION_PM
    loadbalance vip icmp-reply active
policy-map multi-match PM_MULTI_MATCH
  class TEST_ORION_CM
    loadbalance vip inservice
    loadbalance policy TEST_ORION_PM
    loadbalance vip icmp-reply active
  class TEST_ORION_443_CM
    loadbalance vip inservice
    loadbalance policy TEST_ORION_PM
    loadbalance vip icmp-reply active
    ssl-proxy server TEST_ORION_PROXY
  class TDB_CM
    loadbalance vip inservice
    loadbalance policy TDB_PM
    loadbalance vip icmp-reply active
  class TDB_443_CM
    loadbalance vip inservice
    loadbalance policy TDB_PM
    loadbalance vip icmp-reply active
    ssl-proxy server TDB-Web-SSL-PROXY
  class TDB-Web-80
    loadbalance vip inservice
    loadbalance policy TDB_PM-80

service-policy input PM_MULTI_MATCH

interface vlan 300
  ip address 192.168.62.36 255.255.255.248
  alias 192.168.62.37 255.255.255.248
  peer ip address 192.168.62.35 255.255.255.248
  access-group input ALLOW-TRAFFIC
  nat-pool 1 192.168.62.38 192.168.62.38 netmask 255.255.255.248 pat
  service-policy input ICMP_INSPECT_POLICY
  service-policy input mgmt-pm
  service-policy input NAT_POLICY
  no shutdown
interface vlan 301
  ip address 192.168.62.44 255.255.255.248
  alias 192.168.62.45 255.255.255.248
  peer ip address 192.168.62.43 255.255.255.248
  access-group input ALLOW-TRAFFIC
  service-policy input ICMP_INSPECT_POLICY
  service-policy input mgmt-pm
  no shutdown

ip route 0.0.0.0 0.0.0.0 192.168.62.33
ip route 192.168.66.0 255.255.255.0 192.168.62.41
ip route 192.168.225.0 255.255.255.192 192.168.62.41
ip route 192.168.225.128 255.255.255.192 192.168.62.41
ip route 192.168.249.0 255.255.255.240 192.168.62.41
ip route 192.168.249.16 255.255.255.240 192.168.62.41