Re: Routing to real servers through CSM ?

shamilton-wilkes · ‎03-23-2004

Everything on my network goes into one 6513 containing 2XCSMs. I'm trying to migrate from IOS SLB to the CSMs, but if I move one of my servers into a CSM server VLAN (making the CSM the hosts default gateway) I can no longer get to the real server for management - load balancing works fine. Is the only solution to this to put an MSFC VLAN interface in the VLAN too and static route local IPs to that, or am I doing something wrong?

TIA

Simon

jfoerster · ‎03-24-2004

Hi Simon,

you can access your server depending on the config you have in two ways:

- If you have bridged-mode just connect to the servers

- if you have routed mode configure a vserver using a serverfarm FORWARD_IT which look like this:

serverfarm FORWARD_IT

no nat server

no nat client

predictor forward

This is more or less a just route from one vlan to the other vlan on the CSM. I think that you will have direct access to your servers if the rest of the routing is fine. Maybe you can think of limiting the access to the reals by placing an ACL in the vserver or anywhere else.

Hope that helped.

Regards,

Joerg

shamilton-wilkes · ‎03-24-2004

Thanks, I see from the documentation that this should work, but it isn't:

vlan 23 server

ip address 10.20.23.1 255.255.255.0

serverfarm ROUTE_ALL

no nat server

no nat client

predictor forward

vserver ROUTE_ALL

virtual 192.168.196.5 any

serverfarm ROUTE_ALL

persistent rebalance

inservice

ip route 10.20.23.0 255.255.255.0 192.168.196.5

I still can't ping the real server from the switch, or anywhere else. CSM software is 3.2(1), switch is running 12.1(20)E.

shamilton-wilkes · ‎03-25-2004

I'll answer my own post as I got it working:

vserver ROUTE_ALL

virtual 10.20.23.0 255.255.255.0 any

fixed the issue.