Re: Cisco ace website error

rakuntal · ‎04-03-2024

Hi, We have a ACE, which we use to load balance traffic between towards two Proxy servers. We are using source nat in proxy interface Vlan in ACE. Two days back our manager enabled ssl3 in proxy servers after that clients are getting SSL error security reason error in their browser. When we remove source nat than there ia no error but when source nat is used we get website security error

Thank in advacne

balaji.bandi · ‎04-03-2024

what device is this, what IOS code running, provide sample configuration ?

what proxy device ? does client have any certs ?

if you using SSL decryption client should have certs installed ?

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

rakuntal · ‎04-03-2024

Hi,

thanks for reply

Cisco ACE Version

Software
loader: Version 12.2[123]
system: Version A2(1.6a) [build 3.0(0)A2(1.6a) adbuild_08:46:04-2009/10/16_/auto/adbu-rel4/rel_a2_1_6_throttle/REL_3_0_0_A2_1_6A]
system image file: [LCP] disk0:c6ace-t1k9-mz.A2_1_6a.bin

interface vlan 150
description EXT DMZ
ip address 172.16.15.3 255.255.255.0
alias 172.16.15.1 255.255.255.0
peer ip address 172.16.15.2 255.255.255.0
access-group input VLAN150-ACCESS-IN
nat-pool 150 172.16.32.1 172.16.32.31 netmask 255.255.255.0 pat
service-policy input ICMP_ALLOW_POLICY
no shutdown

Proxy server we are using for local users internet access. Regarding clients there is no issue, when they are connecting without source nat configuration ( in ACE ) there is no issue.

Thanks in advance