Hello,If all the clients are behind an ISP and as a result coming in with a single NAT address is it still possible to attain load balancing across multiple servers using "predictor hash address dest 255.255.255.255"?Thanks,Murtaza
Hello,I have a requirement to redirect https traffic to http. Is it possible to do that in the CSM? In the CSM documentation all redirect examples/config etc refer only to http traffic so I am wondering if the other way around is supported as well.BT...
Hi Guys,A basic question on the GSS. One of our customers would like to upgrade their GSS OS from the CD instead of using FTP. I have looked around on Cisco and could not find any document on that. All documents I have seen are using FTP. Would someo...
Hi Guys,We are currently using an agent on our application servers which puts a server in "inservice standby" if the CPU load on the system goes above 75%. This agent is using an XML post on the CSM to achieve this and put the server back inservice u...
Hello,We have some VPN customers complaining accessing SAP via the CSM. Direct access to the servers works fine. Based on the situation we think that the CSM is not passing on ICMP Unreachables (RFC 792) from the firewalls to the servers so that MSS ...
Sticky Src IP is what I am trying to avoid. As the client session are L2TP I can't use cookie stickiness. So that is why I was thinking about using dest hash based load balancing on the ACE.
Hello Gilles,We do have a CSM-S but if I have understood you correctly we need to terminate SSL connection on the SSL-DC and create an HTTP one from CSM to the backend system. This is more like SSL termination than redirect correct?Thanks,-Murtaza
We took a trace and it looks like the CSM is not forwarding the ICMP unreachable to the backend system. I have checked the mask and it looks ok on the device.-M
