Technical data

ManualsBrandsBrocade Communications Systems ManualsHome Theater ServerServerIron ADX 12.4.00

151

152

153

154

155

156

157

158

159

160

142 ServerIron ADX Firewall Load Balancing Guide

53-1002436-01

Configuring FWLB-to-SLB

DRAFT: BROCADE CONFIDENTIAL

• Configure firewall parameters:

Define the firewalls and add them to the firewall group

• Configure firewall group parameters:

Configure the paths and add static MAC entries for the firewall interfaces with the ServerIron

The tasks under the first item (Configure SLB parameters on the internal ServerIron) are described

in the following sections. The remaining tasks are identical to the tasks for configuring basic FWLB

for Layer 3 firewalls. For more information about these tasks, refer to

“Configuring basic Layer 3

FWLB” on page 17.

Configuring the SLB parameters

In an FWLB-to-SLB configuration, all SLB configuration takes place on the internal ServerIron ADX.

The ServerIron ADX on the Internet side of the firewalls does not contain any SLB configuration

information. This section describes how to configure the internal ServerIron ADX to provide SLB for

the real servers and virtual server shown in

Figure 21 on page 137.

Configuring the real servers

To configure the real servers shown in Figure 21 on page 137, enter the following commands on

the internal ServerIron ADX (ServerIron ADX B).

NOTE

You can use the server real-name command if Proxy ARP is enabled on the internal router.

Otherwise, you must use the server remote-name command to add the real servers instead of the

server real-name command.

ServerIronADXB(config)# server real-name RS1 192.168.2.50

ServerIronADXB(config-rs-RS1)# port http

ServerIronADXB(config-rs-RS1)# exit

ServerIronADXB(config)# server real-name RS2 192.168.2.60

ServerIronADXB(config-rs-RS2)# port http

ServerIronADXB(config-rs-RS2)# exit

The server real-name command adds a real server. The port command enables a TCP or UDP port

on the server. In this case, the port http command enables TCP port 80 (HTTP).

Syntax: [no] server real-name <text> <ip-addr>

Syntax: [no] port <port> [disable | enable]

Syntax: [no] port <port> [keepalive]

Configuring the virtual server

To configure the virtual server shown in Figure 21 on page 137, enter the following command on

the internal ServerIron ADX (ServerIron B).

ServerIronADXB(config)# server virtual-name www.brocade.com 192.168.1.2

ServerIronADXB(config-vs-www.brocade.com)# port http

The server virtual-name command adds the virtual server. The port command enables a TCP or

UDP port on the server.

Syntax: [no] server virtual-name <text> [<ip-addr>]