Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
451
Views
0
Helpful
1
Replies

Cisco 11500 transmission between two server pools

bapayne
Level 1
Level 1

‎09-07-2004 12:59 PM

I have two server pools and one pool needs to periodically update the other, and both need to face the world. Both face the world just fine. When the .47 tries to update the .48 the packets are dropped by the css.

Here is the switch config:

CSS11503# sho run

!Generated on 09/07/2004 08:54:41

!Active version: sg0710102

configure

!*************************** GLOBAL ***************************

logging host X.Y.4.254 facility 4 log-level 7

ip route 0.0.0.0 0.0.0.0 X.Y.36.1 1

!************************** CIRCUIT **************************

circuit VLAN1

ip address X.Y.36.9 255.255.255.0

!************************** SERVICE **************************

service PLAB1

ip address X.Y.36.233

keepalive frequency 10

active

service PLAB10

ip address X.Y.36.243

keepalive frequency 10

active

service PLAB11

ip address X.Y.36.244

keepalive frequency 10

active

service PLAB12

ip address X.Y.36.245

keepalive frequency 10

active

service PLAB13

ip address X.Y.36.246

keepalive frequency 10

active

service PLAB14

ip address X.Y.36.247

keepalive frequency 10

active

service PLAB2

ip address X.Y.36.234

keepalive frequency 10

active

service PLAB3

ip address X.Y.36.235

keepalive frequency 10

active

service PLAB4

ip address X.Y.36.236

keepalive frequency 10

active

service PLAB5

ip address X.Y.36.237

keepalive frequency 10

active

service PLAB6

ip address X.Y.36.238

keepalive frequency 10

active

service PLAB7

ip address X.Y.36.239

keepalive frequency 10

active

service PLAB8

ip address X.Y.36.240

keepalive frequency 10

active

service PLAB9

ip address X.Y.36.242

keepalive frequency 10

active

!*************************** OWNER ***************************

owner NES

content Load7

add service PLAB1

add service PLAB2

add service PLAB3

add service PLAB4

add service PLAB5

add service PLAB6

add service PLAB7

add service PLAB8

balance aca

vip address X.Y.36.47

active

content Load8

add service PLAB9

add service PLAB10

add service PLAB11

add service PLAB12

add service PLAB13

add service PLAB14

balance aca

vip address X.Y.36.48

active

CSS11503#

I believe that the switch is filtering traffic going from one pool to the other. If I send traffic from one pool to the specific IP addresses of the servers in the other pool it works.

Labels:
0 Helpful
1 Reply 1

jfoerster
Level 4
Level 4

‎09-08-2004 06:27 AM

Hi,

if you do not have configured client NAT for connection between servers within Content Load 7 to update content load8 the connection will break because the return flow will not hit the CSS. Therefore the CSS detects this flow as a DoS and drops it. Just configure some client nat using ACLs or destination services and it should work Btw how do you ensure that every server is updated because if you trigger it from one server within Pool7 the CSS will choose on of the server and than the update will run on this one. If you there is no mechanism that the next update points towards another server you have the possibilty to update all of them, but this is another story.

Kind regards,

Joerg

0 Helpful
Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card