I'm having some difficulty setting up DNAT. Here is my configuration:
Protocol: TCP
Nat Type: DNAT
Load Balance Algorithm: Priority
Persistence mode: no persistence
Source IP Address Persistence time to limit: 120
Farm VIP and Port: x.x.10.160 443
Load Balancer IP: x.x.10.60
Back End Configuration:
Server: 0 Address: x.x.10.64 Port: 443 Weight: 1
When attempting to connect to the VIP I get: Error code:
ERR_CONNECTION_REFUSED
Here is what the packet capture on the ASA shows that the VIP is resetting
the connection:
1: 10:37:58.860871 x.x.10.100.55587 > x.x.10.160.443: S
4246243607:4246243607(0) win 8192 <mss 1380,nop,wscale 8,nop,nop,sackOK>
2: 10:37:58.861344 x.x.10.100.55588 > x.x.10.160.443: S
1727604558:1727604558(0) win 8192 <mss 1380,nop,wscale 8,nop,nop,sackOK>
3: 10:37:58.861420 x.x.10.160.443 > x.x.10.100.55587: R 0:0(0) ack
4246243608 win 0
4: 10:37:58.861497 x.x.10.160.443 > x.x.10.100.55588: R 0:0(0) ack
1727604559 win 0
If I use regular HTTPS farm then the traffic passes through flawlessly.
But I need to be able to see the client IPs for logging and to allow for
application IP address restrictions. Any help would be greatly appreciated.
--
*Tom Trantham*
------------------------------------------------------------------------------
Android apps run on BlackBerry 10
Introducing the new BlackBerry 10.2.1 Runtime for Android apps.
Now with support for Jelly Bean, Bluetooth, Mapview and more.
Get your Android app in front of a whole new audience. Start now.
http://pubads.g.doubleclick.net/gampad/clk?id=124407151&iu=/4140/ostg.clktrk
_______________________________________________
Zenloadbalancer-support mailing list
Zenloadbalancer-support@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/zenloadbalancer-support
