From: Edouard Zorrilla (ezorrilla@tsf.com.pe)
Date: Mon Nov 10 2008 - 09:11:13 ARST
Hi,
Thanks Tony,
Do anyone there who can send me unicast this document :
http://wwwin-eng.cisco.com/protected-cgi-bin/edcs/edcs_attr_search.pl?doc_num=EDCS-504513
Regards
----- Original Message -----
From: "Frank" <ocsic@web.de>
To: "Tony Varriale" <tvarriale@flamboyaninc.com>
Cc: "'amernas'" <taloust@gmail.com>; <ccielab@groupstudy.com>;
<security@groupstudy.com>
Sent: Monday, November 10, 2008 4:14 AM
Subject: Re: ACE Sample Configs
> Tony Varriale wrote:
>
> Agreed,
>
> routing issues between contexts and traffic flow might be difficult,
> also FT needs very good understanding in how it will work. The Cat and
> the ACE are seperate routing instances. SSL certificates, for example,
> will not get replicated with the context's. Many things, someone can
> stumble upon. Yust my two cents.
>
> Greetings,
>
> Frank
>> I would hire a qualified partner to assist you and your web team with
>> this.
>> You not only need to understand ACE, network, apps, html, etc but you
>> also
>> need to understand what the web team is doing. It's not something
>> someone
>> can pick up in a month or 2.
>>
>> tv
>>
>> -----Original Message-----
>> From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
>> Edouard Zorrilla
>> Sent: Sunday, November 09, 2008 6:29 AM
>> To: Edouard Zorrilla; amernas; ccielab@groupstudy.com
>> Cc: security@groupstudy.com
>> Subject: Re: ACE Sample Configs
>>
>> Just to add, my company have bought two ace's along two chassis 6506 to
>> perform a load balancing and I need to set them up, the issue is that I
>> have
>>
>> never set up this before.
>>
>> Regards
>>
>> ----- Original Message -----
>> From: "Edouard Zorrilla" <ezorrilla@tsf.com.pe>
>> To: "amernas" <taloust@gmail.com>; <ccielab@groupstudy.com>
>> Cc: <security@groupstudy.com>
>> Sent: Sunday, November 09, 2008 7:17 AM
>> Subject: Re: ACE Sample Configs
>>
>>
>>
>>> I am a kind of confusing regarding this, for instance the command : "
>>> peer
>>>
>>
>>
>>> ip address X.X.X.14 255.255.255.0"
>>>
>>> It means I do not need to enter any command on the peer context which is
>>> working as a standby ? If so what do I need to enter on the peer context
>>> ?. Would you please unicast me with the config on both contexts ?
>>>
>>> Thanks a lot for your patience,
>>>
>>> Regards
>>>
>>> ----- Original Message -----
>>> From: "amernas" <taloust@gmail.com>
>>> To: "'Edouard Zorrilla'" <ezorrilla@tsf.com.pe>;
>>> <ccielab@groupstudy.com>
>>> Cc: <security@groupstudy.com>
>>> Sent: Sunday, November 09, 2008 7:02 AM
>>> Subject: RE: ACE Sample Configs
>>>
>>>
>>> Here is an example of the configuration of the primay ACE with 2
>>> contexts
>>> RED-1 and BLUE-1
>>>
>>> ###################################
>>> .
>>> .
>>> hostname ACE-PRIMARY
>>> .
>>> .
>>> resource-class RED
>>> limit-resource all minimum 45.00 maximum equal-to-min
>>> resource-class BLUE
>>> limit-resource all minimum 45.00 maximum equal-to-min
>>> ..
>>> ..
>>> interface vlan 2
>>> description MANAGEMENT INTERFACE
>>> ip address X.X.X.13 255.255.255.0
>>> peer ip address X.X.X.14 255.255.255.0
>>> service-policy input ACE-MGMT-TRAFFIC
>>> no shutdown
>>>
>>> ft interface vlan 52
>>> description FAILOVER AND SYNC INTERFACE
>>> ip address X.X.X.1 255.255.255.0
>>> peer ip address X.X.X.2 255.255.255.0
>>> no shutdown
>>> .
>>> .
>>> context RED-1
>>> description RED-1 CONTEXT
>>> allocate-interface vlan 9
>>> allocate-interface vlan 30-31
>>> allocate-interface vlan 55
>>> member RED
>>>
>>> context BLUE-1
>>> description BLUE-1 CONTEXT
>>> allocate-interface vlan 7
>>> allocate-interface vlan 40-41
>>> allocate-interface vlan 50
>>> member BLUE
>>> .
>>> .
>>> ft peer 1
>>> heartbeat interval 1000
>>> heartbeat count 10
>>> ft-interface vlan 52
>>>
>>> ft group 1
>>> peer 1
>>> peer priority 90
>>> associate-context ADMIN-CONTEXT
>>> inservice
>>>
>>> ft group 2
>>> peer 1
>>> peer priority 90
>>> associate-context RED-1
>>> inservice
>>>
>>> ft group 3
>>> peer 1
>>> peer priority 90
>>> associate-context BLUE-1
>>> inservice
>>>
>>> ############################################
>>> -----Original Message-----
>>> From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
>>> Edouard Zorrilla
>>> Sent: Saturday, November 08, 2008 11:54 PM
>>> To: ccielab@groupstudy.com
>>> Cc: security@groupstudy.com
>>> Subject: ACE Sample Configs
>>>
>>>
>>> Anyone who has more real examples how to set up a ACE (Application
>>> Control
>>> Engine) module ? I found this :
>>>
>>>
>>>
>> http://www.cisco.com/en/US/products/ps6906/tsd_products_support_model_home.h
>>
>>> t
>>> ml
>>>
>>> But I gues this is not enough since the examples do not show how to set
>>> up
>>> the standby module,
>>>
>>> Regards
>>>
>>>
>>> Blogs and organic groups at http://www.ccie.net
>>>
>>> _______________________________________________________________________
>>> Subscription information may be found at:
>>> http://www.groupstudy.com/list/CCIELab.html
>>>
>>>
>>> Blogs and organic groups at http://www.ccie.net
>>>
>>> _______________________________________________________________________
>>> Subscription information may be found at:
>>> http://www.groupstudy.com/list/CCIELab.html
>>>
>>
>>
>> Blogs and organic groups at http://www.ccie.net
>>
>> _______________________________________________________________________
>> Subscription information may be found at:
>> http://www.groupstudy.com/list/CCIELab.html
>>
>>
>> Blogs and organic groups at http://www.ccie.net
>>
>> _______________________________________________________________________
>> Subscription information may be found at:
>> http://www.groupstudy.com/list/CCIELab.html
Blogs and organic groups at http://www.ccie.net
This archive was generated by hypermail 2.1.4 : Mon Dec 01 2008 - 08:18:30 ARST