Technical data
Firewall Load Balancing Guide
5 - 8 © 2012 Brocade Communications Systems, Inc. May 31, 2012
NOTE: To define multiple router ports on a switch, enter the port numbers, separated by blanks. You can enter
up to eight router ports in a single command line. To enter more than eight ports, enter the server router-ports
command again with the additional ports.
If the link is a trunk group, specify the port number of the primary port. The primary port is the first port in the trunk
group.
Configuring the Firewalls
To configure a firewall, enter a name for the firewall and the IP address of its interface with the ServerIron.
Optionally, you also can enter the following information:
• The TCP or UDP application ports on the firewall
• The health check state (enabled by default)
• The maximum total number of sessions
• The maximum new session rate
Adding the Firewalls
To configure the firewalls on ServerIron SI-Ext-A in Figure 5.1, enter commands such as the following:
ServerIron(config)# server fw-name FW1 10.10.10.1
ServerIron(config-rs-FW1)# port http
ServerIron(config-rs-FW1)# exit
ServerIron(config)# fw-name FW2 10.10.10.2
ServerIron(config-rs-FW2)# port http
ServerIron(config-rs-FW2)# exit
ServerIron(config)# server fw-group 2
ServerIron(config-tc-2)# fw-name FW1
ServerIron(config-tc-2)# fw-name FW2
Syntax: [no] server fw-name <string> <ip-addr>
This command adds a firewall.
Syntax: [no] port <tcp/udp-port> [no-health-check]
The <tcp/udp-port> parameter can be a number from 1 – 65535 or one of the following well-known port names:
• dns – port 53
• ftp – port 21. (Ports 20 and 21 both are FTP ports but in the ServerIron, the name “ftp” corresponds to port
21.)
• http – port 80
• imap4 – port 143
• ldap – port 389
• nntp – port 119
• ntp – port 123
• pop2 – port 109
• pop3 – port 110
• radius – UDP port 1812
• radius-old – the ServerIron name for UDP port 1645, which is used in some older RADIUS implementations
instead of port 1812
• smtp – port 25