From: Venkataramanaiah.R (vramanaiah@gmail.com)
Date: Mon May 28 2007 - 04:45:45 ART
Tarun, Thanks for your response...
1) Were you able find some documentation to confirm the Active/Active
support on ACE?
2) FWSM Doesnt support QoS. TAC has confirmed this to me.. The link you have
shared here is a MQC reference which is used for classification and PBR,
etc., but doesnt have any QoS features in it..
3) A quick review did not get me an answer; but what i read so far is only
reiterating that i will not be able to have multiple bridge group pairs in
the same context. Although it says a context can have one bridge pair and
multiple routed i/fs.. This again is an issue; because it might short
circuit the BVI and the routed i/fs; and hence the isolation between them
isnt possible..
Regards
-Venkat
On 5/27/07, Tarun Pahuja <pahujat@gmail.com> wrote:
>
> Venkat,
>
> 1 ) Failover is supported per virtual partition between application
> instances using a redundant Cisco ACE Services Module. Stateful redundancy
> is available for traditional active-standby and active-active
> configurations. Stateful failover is supported both within the chassis and
> across chassis between peer ACE modules.
>
> 2) FWSM supports QOS:
> http://www.cisco.com/en/US/products/hw/switches/ps708/products_module_configuration_guide_chapter09186a0080577c4a.html
>
>
> 3) Take a look at the design guide for ACE, it will answer your question
> regarding gateway.
>
> http://www.cisco.com/univercd/cc/td/doc/solution/ace_fwsm.pdf
>
> Thanks,
> Tarun Pahuja
> CCIE#7707(R&S,Security,SP,Voice,Storage),CCSI
>
>
> On 5/27/07, Venkataramanaiah.R <vramanaiah@gmail.com> wrote:
>
> > Hi, Please see if you can help me with any of these questions..
> >
> > 1) We are currently migrating a datacenter which has CSM to ACE. We used
> > to
> > have multiple Client/Server Vlan pairs in bridged mode with ACE (Defacto
> > Single context in CSM)
> > Now we want to do the same with the ACE in a single context.
> > Unfortunately;
> > it doesnt seem to have the gateway command unlike CSM. This is forcing
> > us to
> > eat up the Context license in ACE.. Is this removed from ACE? or is
> > there a
> > way out which i am not aware of..
> >
> > 2) Does ACE support Active/Active failover like FWSM. I can see
> > Datasheets
> > talking about it; but couldnt confirm this from the configuration
> > guides.?
> >
> > 3) This one is not related to ACE; but in general i see QoS isnt
> > supported
> > by FWSM. So i am wondering how customers worldwide are deploying IPT
> > Serverfarms behind FWSM and still deploy QoS.. One of the solution; we
> > are
> > providing our customers now is to add a pair of Firewalls for other Apps
> > (with oversubscription) and a pair of Firewalls for IPT (without
> > oversubscription). Do you have a better solution for this..?
> >
> > TIA
> > -Venkat
> >
> > _______________________________________________________________________
> > Subscription information may be found at:
> > http://www.groupstudy.com/list/CCIELab.html
This archive was generated by hypermail 2.1.4 : Fri Jun 01 2007 - 06:55:22 ART