Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1015
Views
0
Helpful
3
Replies

Question Cisco ACE mode bridge - client side connect to servers

Alvaro Perez Unzueta
Level 1
Level 1

‎08-24-2011 08:26 PM

Hello,

I have configured the cisco ace 4710 in mode bridge, but i want know if i can connect servers of the vlan 401 in the Switch, for example 10.1.40.50 with default-gateway SVI 401 10.1.40.10 with real servers of the ACE (10.1.40.2 and 10.1.40.3 with default-gateway bvi 10.1.40.1)

**********************************Cisco ACE**********************************

ace-demo/Admin# sh run
Generating configuration....


boot system image:c4710ace-mz.A3_2_4.bin
boot system image:c4710ace-mz.A3_2_1.bin

hostname ace-demo
interface gigabitEthernet 1/1
  channel-group 1
  no shutdown
interface gigabitEthernet 1/2
  channel-group 1
  no shutdown
interface gigabitEthernet 1/3
  channel-group 1
  no shutdown
interface gigabitEthernet 1/4
  channel-group 1
  no shutdown
interface port-channel 1
  switchport trunk allowed vlan 400-401,450
  no shutdown

access-list bpdufilter ethertype permit bpdu

access-list anyone line 8 extended permit ip any any
access-list anyone line 16 extended permit icmp any any

rserver host rsrv1
  ip address 10.1.40.2
  inservice
rserver host rsrv2
  ip address 10.1.40.3
  inservice


serverfarm host farm-demo
  rserver rsrv1
    inservice
  rserver rsrv2
    inservice

class-map type management match-any MGMT
  2 match protocol icmp any
  3 match protocol http any
  4 match protocol https any
  5 match protocol snmp any
  6 match protocol telnet any
  7 match protocol ssh any
class-map match-any VIP
  3 match virtual-address 10.1.40.20 any
class-map type management match-any icmp
  2 match protocol icmp any
class-map type http loadbalance match-any p-site-A

policy-map type management first-match ICMP
  class icmp
    permit
policy-map type management first-match MGMT
  class MGMT
    permit

policy-map type loadbalance first-match server-balance
  class class-default
    serverfarm farm-demo

policy-map multi-match client-side
  class VIP
    loadbalance vip inservice
    loadbalance policy server-balance

interface vlan 400
  description side-server
  bridge-group 1
  access-group input bpdufilter
  access-group input anyone
  service-policy input ICMP
  no shutdown
interface vlan 401
  description side-client
  bridge-group 1
  access-group input bpdufilter
  access-group input anyone
  service-policy input ICMP
  service-policy input client-side
  no shutdown
interface vlan 450
  description mgmt
  ip address 10.1.45.1 255.255.255.0
  access-group input anyone
  service-policy input MGMT
  no shutdown

interface bvi 1
  ip address 10.1.40.1 255.255.255.0
  no shutdown

ip route 192.168.10.0 255.255.255.0 10.1.45.10

!

**********************************Switch**********************************

vlan 401

name client_side

!

interface vlan 401

ip address 10.1.40.10 255.255.255.0

no shutdown

!

Regards,

Labels:
0 Helpful
3 Replies 3

ohynderi
Level 1
Level 1

‎08-25-2011 01:05 AM

Technically yes you can. A couple of questions:

- Will 10.1.40.50 be part of a serverfarm on ACE (with other rserver on vlan 400)

- Why gateway on 10.1.40.2 and 10.1.40.3 needs to be the ACE BVI IP and not 10.1.40.10?

Thanks,

Olivier

0 Helpful

Alvaro Perez Unzueta
Level 1
Level 1
In response to ohynderi

‎08-25-2011 07:35 AM

Hello olivier,

- 10.1.40.50 is not part of serverfarm on ACE (vlan 401)

- The gateway can be 10.1.40.10 in vlan 401? the rserver on vlan 400.is it posoble?

Regards

0 Helpful

ohynderi
Level 1
Level 1
In response to Alvaro Perez Unzueta

‎08-25-2011 07:45 AM

Hello agin!

So in bridge mode, with below topology, servers should have their gateway pointing to the router ip.

Router -- vl401 -- ACE -- vl400 -- Servers

So in your case, server on vlan 400 should have their default route pointing to 10.1.40.10.

--Olivier

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents