Have two ACE 4710 in HA setup. We would like to setup HTTPS loadbalance(actually just a primary and standby configuration in the serverfarm). Initially this would be for Exchange OWA connections but may expand to more HTTPS connections later. I know there are several ways to do SSL with the ACE( client, server, end-to-end). I am just wanting to know the easiest way to deploy this? Is a certificate always needed on the ACE for each connection? In HA mode would a certificate be needed for both or does it replicate in some way to the other ACE?
I am trying to configure ACE 4710 to load balance base on the URL, If it matches the specific URL ( /456/ ), the traffic will be sent to server farm 456 else the traffic will be sent to server farm 123.
I attached an image of the topology.
rserver host SRV01_123 ip address 192.168.1.101 inservice
I've done a lot of ACE work over the years but this is the first time this has ever come up.
I have a request from an application group where I have 3 rserver in the server farm but they want all traffic to only go to the first server unless that server fails. If the first server fails, only then do they want traffic to go to the 2nd server instead and if that fails, then traffic goes to the 3rd.
I've read through the documentation but haven't figured out a way to do this. What to do this type of failover configuration?
Physically, it's like this. The RED line denotes a boundary, and pretty much anything North of that is not accessible to us, we simply have a L3 trunk between our switches and "their" switches (S3/S4) and talk using EIGRP.
There are other servers in the top tier, some that also require load balancing, some that don’t. Typically, I want to load balance HTTPS requests from the internet, to one of the 3 servers in the top half.
I’m not sure what mode to select, routed, one arm? What about placement of the ACE? At the moment, I’ve just configured 1/1 on it and made it part of the MG MT VLAN, it's S VI exists on the S1/S2 switches, so I’m open to change as it's still all in the lab.
what you're doing to load balanace internet traffic? I'm interested in load balancing internet traffic (outbound -AND- INBOUND) using multiple (at least 2) ISPs. Some of the methods I have used in the past have certain weaknesses.. basic DNS load balancer (relies on multiple IP addresses per host), OER/PFR (ability to control INbound is limited unless complex configuration and coopearation with ISPs)... This is kind of a broad open ended question.. It seems like something that would be a common issue and am wondering what other are doing with the capabilities 2800, 2900, 3800, 3900 series routers..
I have a Cisco ACE with a server farm "intranet" with real servers rsrv1 and rsrv2 (round robin) and i have two sites A (IP Address A) and B (IP Address B) in the WAN. I want to that Site A conect to ACE 4710 via VIP, but this connection will be to srv1 and Site B conect to ACE 4710 via VIP, but this connection will be to srv2.
SIP Load balancing Issue with ACE 4710?I have a Cisco ace 4710 with vesion Version A4(2.2). i configued simple SIP load balancing first without stickiness. without stikeiness we are having a problem because bye packet at the was not going to the same server all the time that left our port in used even though user hang up the phone. its happen randmly. i have a total 20 licenced ports and its fill out very quickly. so i dicided to use the stickiness with call-ID but still same issue. below is the config
rserver host CIN-VOX-31 ip address 172.20.130.31 inservice rserver host CIN-VOX-32 ip address 172.20.130.32 inservice
Experienced the same sort of behaviour with an ACE 4710 version A3 (2.5). When trying to connect to a webpage on port 443, the pages over 1 minute to download fully. I have timed the download using the plug-in firefox. What is strange is that the browser successfully makes the connection, 200OK etc, but each 'get' takes a very long time to transfer. If I go directly to the server and don't pass via the ACE the page takes between .7 and 1 second to transfer.Is there a way to speed this transfer up, I am currently looking at connection maps.
We are using Cisco ACE 4710 for load balancing the servers. The predictor used is 'least connections'.Have observed the below;The number of connections for a particular server in a serverfarm is 15 in the Cisco ACE.The actual number of users in that server is 6.All the users access using the VIP.Still i couldn't understand why there is difference in the number of users in the server and the load balancer statistics.
We have two Cisco ACE 4710 and we want to install both of the devices in HA with load balancing mode.While i have done HA mode configuration between ACE 4710.But unable to configure load balancing configuration between them.i want to tell you connectivity between server,client & loadbalancer.Our Web servers are connected to VLAN 152 on the L3 (3750) switch.Which are alreday working in redundancy between other L3.And ACE 4710 it is also connected to vlan 150 which are connected to same L3 (3750) switches and users are also connected to vlan 6 on the same L3 itself.
I am configuring a load balancer from cisco, a ACE 4710.Load blancing is completely new to me, and i am unexpereinced in this field. It has to be configured for a customer that want to load balance HTTP and RTSP traffic over 4 application servers (Back-end),I searched alot on google for possible solutions, and got RTSP in some way to work, but http wont work says my customer.
I am performing a deployment, in which i require clarity on the following. Our setup has DC and DR , in each site we have two devices for HA.We have received One SSL Certificate from Public CA, Kindly clarify the following doubts i have on thisIn Doc, i found Cert.pem and key.pem is required to generate the pair ,do i receive both Cert.pem and key.pem from the CA or we can generate key.pem from Cert.pem ?SSL Offloading is planned for the X application, and it is running in both DC and DR ( Considering each having their own Public IP address ) , do i need to have two different public certificates or a single certificate can i use in both DC and DR.Load Balancing IssueIs it possible to configure in ACE to access the service in Business hours and in non Business hours to display HTML page showing this is available only during these hours ?In DC we have Three Web Servers ( only in One physical server the service is active, other two are backup ), and these three servers are under cluster and shares one cluster IP , In ACE we have created the VIP and Pointed to only Cluster IP ( like pass through only ). The issue we face is if active web server is down, even then ACE is sending the traffic to that webserver only instead of sending it to the new Active web server. let us know if any solution is there to overcome this issue ?as per my understanding instead of giving cluster IP as real server IP we can issue the three physical servers. now i dont require load balancing between three servers instead require failover king like if first server is down then it should forward to Second server ?
Our Exchange 2010 hub servers run multiple services/ports: smtp, www, pop3,135, 143, https, 993, 995, 6001,6002,6003,60200,60201,8400, and 8402 what is the best way of balancing these servers so that if only one of the services failed on a server, it would switch only the failed service to remaining servers. At present I only use an smtp probe, so as log as that sevrice is running the server is marked good.
What is the best way to load balance traffic between an FWSM and ASA 5520? Both are attached to a 6509-E (in seperate VLANs). The problem is the FWSM doesn't support any dynamic routing protocols (in multi context mode). So with my limited knowledge I don't see a way to do this.
Is it possible configuring load balance with three intefaces, in my router with the following features?I have three ISP, and would like balance the traffic ... Cisco IOS Software, C2900 Software (C2900-UNIVERSALK9-M), Version 15.2(2)T1, RELEASE SOFTWARE (fc1) Cisco CISCO2911/K9 (revision 1.0) with 483328K/40960K bytes of memory.
Processor board ID FTX1613AH8D 3 Gigabit Ethernet interfaces 1 terminal line 2 Channelized (E1 or T1)/PRI ports 1 Virtual Private Network (VPN) Module DRAM configuration is 64 bits wide with parity enabled. 255K bytes of non-volatile configuration memory. 250880K bytes of ATA System CompactFlash 0 (Read/Write)
I am using 192.168.1.1 as database server in head office. my branch user are more than 500. all user hit at 192.168.1.1 for database. Now i want to NAT with application server 192.168.1.50 and 192.168.1.51 with load balance As some user hit 192.168.1.1 form branch but traffic go to 192.168.1.50 and some users traffic go to 192.168.1.51.
I want to do it in My core router (Cisco 3845) in Head office. How i do these two things ?
Friend of mine has a setup out in the sticks, currently with two ISPs: Hughesnet satellite, and a line-of-sight WiFi provider; they're also getting a cel tower within range soon and he's looking at adding an HSPA/LTE connection via that as well.the first gives him a static IP and ridiculous speed and bandwidth at night... but far less speed and a painfully low bandwidth cap during the day (you go over, you pay through the nose).
The second gives lots of bandwidth but poor speeds (difficult to even watch a YouTube video) and a constantly-changing dynamic IP.The third, once implemented, will give him good speeds and decent bandwidth (I believe up to 10GB/mo) but again, will get spendy if he goes over that limit.Right now, I've got him set up with both routers plugged into the same network, multi-homed the NICs on his machines (192.168.0.* for Hughes, 192.168.1.* for LOS) and a little script on each computer that will change the default gateway to let him select which ISP he wants to use... however, it's going to get trickier with a third, and will make it even tougher to keep track of the bandwidth used on each one... especially with multiple computers, a DVR, and two users.
So I'm looking for some way to automate all this... something that will, say, use the HSPA feed most of the time for his whole home network, switch to LOS if it gets near the cap, and switch everything over to the satellite automatically during "unlimited" hours. Again, I'm not opposed to setting up something PC-based with the appropriate software, although for my own sanity, it would really need to be Windows-based (I'm way below n00b with Linux).
I have problem with VPN and Load Balance at the same time.VPN (Gateway to Gateway) between two RV042 routers is working fine with only one WAN or two WAN's with Smart Link Backup. If i switch to Load Balance communication through VPN is almost impossible.
I have postgres server (port 5432) in first location and clients in another. Clients cannot connect to server or lose connection after while. This is example, but every communicaton except ICMP over VPN with Load Balance enabled is faulty (file sharing, RDP...). Everything works fine using public IP and port forwarding or VPN with only one WAN.
If i understand it correctly Protocol Binding should affect only "normal" communication (outside of VPN), but it looks like VPN communication is also divided between WAN1 and WAN2. Of course this cannot work this way because VPN works only with one WAN.
Another question - is it possible to bind communication TO selected target port with RV042 Load Balancing to selected WAN?
I want to link ASA 5505 to two ISP's for backup purpsose. I can see this configuration example here url...
Question - does the ASA 5505 do load balancing as well for both connections - is there an example somewhere? (I do not want to buy two ASA 5505's!) which seems the only way I could find configuration details for!
We have a Dlink Lb 604 router. We have two wan connections. Connection 1 has a speed up to 8 Mbps.Connection 2 has a speed of 1Mbps.We set the load balance to 50-50. When we tested the speed with two lines it is showing 1 Mbps only.When working with connection 1 we are getting speed upto 6 Mbps.
I have a D-Link DSL 2640B on the way which I plan on using to replace my 2Wire modem. The 2640B is a combination of a modem/wireless device. Does it dynamically load balances the internet connection? Sometimes while I'm playing online games on my PC and a few others are using the internet for browsing or Youtube, I lag A LOT. Latency shoots up from 10 to 200. QoS goes to ****. And I only need 0.50-1Mbps to keep a steady online play. This was the problem with my 2Wire. So does the 2640B load balance the bandwidth?our max speed is 3.5Mbps according to the ATT Rep.
i need to know how many links i can using with load-balance on the same router ? i have router cisco 2901 , 3 providers , every provider having 4 links can i load balance between 12 links ? i am using static route
What is the load balance method of 3750 port channel ( by source ip , or by source mac ) to diver traffic to paths? I have tried to use 10.242.104.101 and 10.242.104.102 as source ip, it will travel to the same link (G0/1) within one port channel (G0/1+G0/2). Howerver, if I later use 10.242.104.109, then this time it will traffic to G0/2 link. What's the concept behind.
I want to split my traffic between two ISP's. I want all traffic to pass over one connection EXCEPT my VPN tunnels, which I want to use the second ISP. How should I set up (protocol binding?) to accomplish this? (I have run into various problems trying to load balance all traffic. So I am trying to "partition" traffic.)