Hi - I have a CSM which is configured to load-balance 2 web-servers initially. I have the following config in place;

module ContentSwitchingModule 4

vlan 102 client

ip address 192.168.8.33 255.255.255.240

gateway 192.168.8.34

!

vlan 104 server

ip address 192.168.9.1 255.255.255.240

!

probe HTTP http

request method head url /index.html

expect status 200 299

interval 20

port 80

!

serverfarm ROUTE

no nat server

no nat client

predictor forward

!

serverfarm WEBFARM

no nat server

no nat client

real 192.168.9.10

inservice

real 192.168.9.11

inservice

probe HTTP

!

vserver VIP

virtual 192.168.8.35 tcp www

serverfarm WEBFARM

no persistent rebalance

inservice

!

vserver REAL_ACCESS

virtual 192.168.9.0 255.255.255.0 any

serverfarm ROUTE

persistent rebalance

inservice

When i try to access the Vip i am getting the following debug output from the CSM card.

Jul 25 21:55:35.151: CSM4:

LB: TYPE:0 LENGTH:128 CNTR:0x16 SEQ:0x103 ID:0x1fffca COMMAND: L7 NEW SESSION

sessionID:0x1fffca sessionID_Seq:0x103 vserverID:0xa RLID:0xa

DST IP:192.168.8.35:0 SRC IP:81.149.150.244:2290 Enacps:0x7ffd

Jul 25 21:55:36.123: CSM4:

LB: TYPE:1 LENGTH:128 CNTR:0x17 SEQ:0x103 ID:0x1fffca

L7 COMMAND: Dest-Decision Cmd

sessionID:0x1fffca sessionID_Seq:0x103

Failed LB : access-denied

I can ping both servers, and the probe is showing that both servers are up on port 80, but yet i am still seeing "access denied" when i try to connect to the VIP. What i actually see in a sniffer trace is that the CSM sends a TCP RST.

Anyone got any ideas ??????

Thanks in advance