Re: Hit the VIP from the server side behind the CSM in L2?
According to DE, the SSL blade will apply its local subnet mask to the incoming packet's source IP. In your case, you had a /24 subnet mask configured on the SSL's vlan, so addresses that end with .0 or .255 would be discarded since the blade treated them as network or broadcast addresses.
The workaround is to configure the lowest subnet mask on the SSL proxy vlan where traffic is received (like a /8).
Configure ssl-proxy vlan with lowest mask to receive traffic or configure ssl-proxy vlan where traffic received to lowest mask (ie,. /8 mask) or load next maintenance release image 2.1(2)
Howdy out there in automation land! So I know it has been a while since my last blog but wow... the places and things we are doing... as I sit here this morning (early in the morning mind you)... I'm getting mentally prepared to teach a 4th Action...
Assure Application Performance on Hyperconverged InfrastructureWednesday November 20th at 11 am ET
Increased adoption of hyperconverged infrastructure has been driven by the need for IT teams to simplify IT operations and increase agility. Organizations a...
To participate in this event, please use the button to ask your questions
This topic is a chance to discuss more about the migration options from existing network designs to Cisco Application Centr...
Worried about the next Azure Stack firmware update? Learn how Cisco UCS makes the complex simple with every update.
In order to get the latest features, defect fixes and to protect from security threats it is the responsibility of the Microsoft Azu...