Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
809
Views
0
Helpful
3
Replies

PBR with ACE in bridge mode

eng_elshreef
Level 1
Level 1

‎10-12-2011 04:00 AM

I have one ACE configured in bridge mode.

for proxy users : they have the VIP as proxy so the traffice from the client with destination the VIP

but there are some users without proxy so we used the Policy Base Routing and it is working and can see the connections on the ACE

but with destination IP of the websites so the traffice is not comming back as show below

BC-LB1/BlueCoat# sho conn | include 10.1.50.10

1782765    1  in  TCP   210  10.1.50.10:52052      67.195.160.76:80      SYNSEEN

1355728    1  out TCP   210  67.195.160.76:80      10.1.50.10:52052      INIT

BC-LB1/BlueCoat#

in the PBR , we used the VIP as next hop address.

please advice what is the problem?

thanks in advance

Labels:
0 Helpful
3 Replies 3

Daniel Arrondo Ostiz
Cisco Employee
Cisco Employee

‎10-12-2011 06:39 AM

Good afternoon,

As you mentioned, it seems the return traffic is not coming back through the ACE. You should review your PBR configuration to ensure that also the return traffic is matched and sent to the ACE

Regards

Daniel

0 Helpful

eng_elshreef
Level 1
Level 1
In response to Daniel Arrondo Ostiz

‎10-13-2011 03:33 AM

I forced the traffic for the test subnet to go through the ACE but it did not solve the issue.

the traffic is sourced / destinationed to the website directly , normally the traffic is destinated to VIP and sourced from the IP address of the cash engine.

0 Helpful

Daniel Arrondo Ostiz
Cisco Employee
Cisco Employee
In response to eng_elshreef

‎10-17-2011 12:47 AM

Please, open a TAC case. We'll investigate further

0 Helpful
Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card