Hello all
I am new to the 11503 switches and would appreciate some help with the config. We are replacing our LD417G's with these switches and because of our current DMZ setup & ip addressing i cannot setup the 11503's in router mode. What i have done is:
1) Create 2 vlan's (10 & 11) using the same ip subnet
2) On the 11503 i have only one circuit for vlan 1.
3) I have connected the reverse proxies to vlan 11 and one of the 11503 interfaces.
4) on vlan 10 is the default gateway ( a pix dmz interface ), none loadbalanced servers and another interface from the 11503.
5) All servers ( loadbalanced and non-loadbalanced have their default gateway set as the pix dmz interface ).
Consequently all client traffic to the reverse proxies go through the 11503. Only real problem is when the reverse proxies talk to their server counterparts (as oppose to the clients ) they have to through the 11503. We tested it by checking the proxy logs and it does seem to be load balancing the client requests ( altho "sh flows" doesn't seem to show much ).
My questions:-
1) Is there a better way of trying to achieve this. I am unfortunatley limited to one ip subnet for the loadbalancer, the reverse proxies and the non-loadbalanced servers.
2) Would this setup be affecting the operation of the SSL module. I packet sniffed the https connection and saw a full tcp handshake, packets being sent from the client but no responses from the 11503.
Any help / advice would be very much appreciated