Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi,We are experiencing a very strange behaviour on several CSS's in our webfarm environments.We're running on a CSS 11506 with WebNS 8.10.1.07s.The flow is very basic and simple:1. A client connects to a VIP on our CSS.2. Based on a content rule deci...
Hi,I need to modify the upstream-downstream service I'm using as a critical-service for my VR's.What will happen if I suspend it, in order to modify it ?First of all, will I be able to suspend such a service being used as a critical-service ?Second, ...
Hi,On my CSS 11506, logs are full of these kind of error messages:"NETMAN-5: Enterprise:DOS Attack:Illegal Src -> 5 times". It also generates a trap every seconds, flooding our syslogd and trapd server.The first information one would obviously requir...
Hi,I can't seem to figure out the relation between the "Current Local Connections" I can see doing a "sh service <service_name>", and the number of active flows toward that service doing a "sh flows | grep <service_ip>" (looking only at the dest IP o...
Hi,I have two Catalyst 6509 switches running CatOS 7.6(7) in VTP client mode.Obviously, no VLAN definition appears in their configuration since their vlan database can only be populated through VTP updates. At that stage I have two questions:1. where...
An update and closure to this case.In depth troubleshooting, with network traces both north and south flows of the CSS have been provided to Cisco TAC.It turns out to be a normal behaviour of the CSS (quoting Cisco TAC).The actual scenario is the fol...
Thanks Gilles for your answer.I've opened a TAC case for that issue. In the meantime we've made some progress on the investigation by capturing several additional network traces and we found that it's always the same kind of packets that are affected...
Thank you Gilles for your answer.If the CSS fails over to the backup I guess it should not be a problem since we're running in ASR redundancy mode, the applications should not be impacted.So I guess, I'll just modify the critical service on the backu...
Hi Josega,VERY WELL SPOTTED !!After reading your message, I investigated the traffic surounding my CSS, and I indeed have a firewall generating heartbeat packets with source IP address 0.0.0.0 and multicast dest MAC address. Usually our L2 switches i...
Thank you Gilles, I didn't know this tip.This indeed shows much more flows but still it's not consistent with what I expected.At that point I think I need to be more explicit:The service I'm refering to is actually an SCA device, terminating SSL conn...
