Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi,
I have been using my ACE for several years, it is in front of a Varnish reverse proxy.
Recently I have noticed something strange.
I am seeing some of Timed-Out and Failed connections :
+------------------------------------------++------- Connec...
Hi group,First off, thanks for the many insightful comments and answers that can be found on this forum.I am using a Cisco ACE for load-balancing my website, the current configuration looks something like this: probe tcp PROBE_TCP port 80 interval ...
Actually - I've re-added normalization. It does not seem to have any effect (on my issue) whether it is on or off.
"- If you see a lot of "TCP Window zero" from the ACE, and if they are during the traffic, that means there is not enough buffer to ha...
Looking a tcpdump on the varnish box, all [RST, ACK] I get from the ACE are preceded with [TCP ZeroWindow] or [TCP Window Full]
I wonder if this is because of "no normalization" on the vlan2424 interface?
Hi Alex,
Thanks for your reply.
Here's my "sh run int"
interface vlan 1212
ip address x.xx.xx.xxx 255.255.255.240
alias x.xx.xx.xxx 255.255.255.240
peer ip address x.xx.xx.xxx 255.255.255.240
access-group input ANY
service-policy input WEB...
Also, it might be relevant to know that I have Cloudflare before the Cisco ACE.
So it looks like this:
Client -> Cloudflare -> Cisco ACE -> Varnish -> backend server(s)
If I remove the Cisco ACE from the equation, and send all traffic from Cloudfl...
Hi Alex,
Thanks for your answer.
Indeed I have seen several posts about normalization on the ACE interface, that might relate to my issue. My understanding is that normalization is enabled by default, and I have not specifically disabled it.
The AC...
