Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1284
Views
0
Helpful
9
Replies

ACE Module - problem with RDP after upgrade to A2(3.2)

JEAN-MARC MEYER
Level 1
Level 1

‎10-21-2010 05:47 AM

Hello,

I had the RDP working fine with the version A2(3.1) with redundant ACE Modules.

After an Upgarde to A2(3.2) all the existing RDP sessions were still working, but the ACE did not redirect any new RDP sessions. Instead other applications as HTTP and HTTPS did work.

After a Rollback to A2(3.1) the new RDP sessions were working again.

Did someone has the same problem, or is there any known bug?

Kind regards

Jean-Marc

Labels:
0 Helpful
9 Replies 9

Ivan Kovacevic
Cisco Employee
Cisco Employee

‎10-21-2010 06:57 AM

What do you exactly mean by "existing RDP session after upgrade". Do you have two ACEs in FT and you upgraded one and made it active so it took over existing RDP connections. Are you load-banasing RDP as any other later 4 service or are you using "policy-map type loadbalance rdp" for it?

0 Helpful

JEAN-MARC MEYER
Level 1
Level 1
In response to Ivan Kovacevic

‎10-21-2010 07:15 AM

Yes, we have 2 ACE Modules in FT and we upgraded so it took over the existing sessions.We are loadbalancing RDP at L7. with "policy-map type loadbalance rdp first-match ...". We also use PAT on the source addresse. I attached an extract of the configuration.

Kind regards

Jean-Marc

73881-config-exp.txt.zip
0 Helpful

Ivan Kovacevic
Cisco Employee
Cisco Employee
In response to JEAN-MARC MEYER

‎10-21-2010 04:22 PM

And for other services that work, do you also use predictor leastconns and source NAT (apart or in combination)?

0 Helpful

JEAN-MARC MEYER
Level 1
Level 1
In response to Ivan Kovacevic

‎10-21-2010 10:47 PM

Yes, other applications, I mostly tested one with SSL Termination on another Contexte, also use Predictor and Source NAT. This apllication was working with both versions A2(3.2) and A2(3.1). I don't have any feedback for other applications.

0 Helpful

Ivan Kovacevic
Cisco Employee
Cisco Employee
In response to JEAN-MARC MEYER

‎10-26-2010 06:12 AM

Have you been able to narrow this down to where does it actually brake? Does the client side TCP session get established? Does the ACE try to establish TCP session to the server and does to forward RDP traffic?

0 Helpful

JEAN-MARC MEYER
Level 1
Level 1
In response to Ivan Kovacevic

‎10-26-2010 06:43 AM

I didn't have many time to troubleshoot. But it seems the TCP session was established between the client and the ACE (telnet VIP 3389), and the ACE did not forward RDP traffic.

0 Helpful

Ivan Kovacevic
Cisco Employee
Cisco Employee
In response to JEAN-MARC MEYER

‎10-26-2010 07:22 AM

I would suggest that you open a TAC SR to have this investigated. There is to few info to determine what has happened. The best way would be to schedule a Maintenance Window and attempt the same thing again together with TAC engineer over the WebEx.

0 Helpful

JEAN-MARC MEYER
Level 1
Level 1
In response to Ivan Kovacevic

‎10-26-2010 07:28 AM

OK, Many thanks for your help.

Regards Jean-Marc

0 Helpful

msardzin
Level 1
Level 1
In response to JEAN-MARC MEYER

‎01-19-2011 10:25 AM

FYI DDTS CSCtl63354 has been logged for this issue.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents