[f-nsp] Serveriron xl - Def GW for real servers?

Robert Geller rgeller at terremark.com
Wed Oct 13 16:44:55 EDT 2004 

In order to use VE interfaces, you have to turn on IP forwarding. I have 
done this on many XLs.

Also, keep in mind when source-nat'ing, you will need to add more than 1 
server source-ip if you have more than 65K connections.  The XLs only 
support 8 server source-ip (major gripe of mine).  You can configure 
more than 8, but only 8 will work.

Cheers

-Rob



Cliff Fogle wrote:
> Yah.  No VE's on the XL series.  You need to use server source-ip and
> ip-subnet vlans like so:
> 
> server source-ip 192.168.5.253 255.255.255.0 192.168.5.1
> server source-ip 10.0.16.8 255.255.252.0 10.0.16.1
> 
> vlan 110 by port
>  tagged ethe 9 to 10 
>  ip-subnet 192.168.4.0 255.255.255.0
> !
> vlan 111 by port
>  tagged ethe 9 to 10 
>  ip-subnet 192.168.5.0 255.255.255.0
> !
> vlan 112 by port
>  tagged ethe 9 to 10 
>  ip-subnet 10.0.16.0 255.255.252.0
> 
> Vlan 111 has no source-ip as the management ip interface is in that
> subnet.  You can only have a max of 8 source-ips defined.  Basically you
> are just giving the SI an ip interface from which to send it's
> health-checks.  You will also need to configure ip forwarding and
> "router interfaces" depending on your topology.  I use DSR so do not
> need to use the SI as a default router.  This has it's own disadvantages
> however.  I believe I've posted this a little more clearly here before:
> 
> http://marc.theaimsgroup.com/?l=foundry-nsp&m=108570138613104&w=2 
> 
> -----Original Message-----
> From: foundry-nsp-bounces at puck.nether.net
> [mailto:foundry-nsp-bounces at puck.nether.net] On Behalf Of Michael
> Bellears
> Sent: Monday, October 11, 2004 8:00 PM
> To: David J. Hughes
> Cc: foundry-nsp at puck.nether.net
> Subject: RE: [f-nsp] Serveriron xl - Def GW for real servers?
> 
> Hi David,
> 
> 
>>Just point the real server's default at the layer 3 vlan
>>interface address (the VE interface).   Route the real
>>server vlan prefix at the serveriron from your core
>>router(s) and you'll be able to talk to the reals directly for 
>>management etc.
> 
> 
> Thanks for the info.
> 
> I'm getting the following when attempting to configure the VE Int:
> 
> Telnet at ServerIron(config)#int ve 1
> Please configure the ve before proceeding further
> 
> telnet at ServerIron(config)#ve 
>   ASCII string   
> telnet at ServerIron(config)#ve 2
> telnet at ServerIron(config)#
> 
> It appears as though the ServerIron XL does not support Virtual Routing
> Interfaces?
> 
> I am running ver 07.4.00T12
> 
> Regards,
> MB
> 
> _______________________________________________
> foundry-nsp mailing list
> foundry-nsp at puck.nether.net
> http://puck.nether.net/mailman/listinfo/foundry-nsp
> 
> 
> 
> _______________________________________________
> foundry-nsp mailing list
> foundry-nsp at puck.nether.net
> http://puck.nether.net/mailman/listinfo/foundry-nsp
> 

-- 
This message has been scanned for viruses and
dangerous content, and is believed to be clean.

More information about the foundry-nsp mailing list