Installation guide

ManualsBrandsCisco ManualsComputer equipmentExplorer 4700

471

472

473

474

475

476

477

478

479

480

12-53

Device Manager Guide, Cisco ACE 4700 Series Application Control Engine Appliance

OL-26645-02

Chapter 12 Configuring Traffic Policies

Configuring Rules and Actions for Policy Maps

Reverse Sticky Reverse IP stickiness is an enhancement to regular stickiness and is used mainly in firewall load

balancing (FWLB). It ensures that multiple distinct connections that are opened by hosts at both

ends (client and server) are load-balanced and stuck to the same firewall. Reverse stickiness

applies to such protocols as FTP, RTSP, SIP, and so on where there are separate control channels

and data channels opened by the client and the server, respectively. For complete details about

reverse stickiness, see the Server Load-Balancing Guide, Cisco ACE Application Control Engine.

In the Sticky Group field, choose the name of an existing IPv4 IP netmask or IPv6 prefix sticky

group that you want to associate with reverse IP stickiness.

Server Farm Indicates that the ACE appliance is to load balance client requests for content to a server farm.

1. In the Server Farm field, select the server farm to which requests for content are to be sent.

2. In the Backup Server Farm field, select the backup server farm to which requests for content

are to be sent.

Leave this field blank to indicate that no backup server farm is to be used.

3. Check the Sticky Enabled check box to indicate that the sticky group associated with this

policy and applied to the primary server farm is applied to the backup server farm. Clear the

Sticky Enabled check box to indicate that the sticky group associated with this policy and

applied to the primary server farm in that policy is not applied to the backup server farm.

4. Check the Aggregate State Enabled check box to indicate that the operational state of the

backup server farm is taken into consideration when evaluating the state of the load-balancing

class in a policy map. Clear this check box to indicate that the operational state of the backup

server farm is not taken into consideration when evaluating the state of the load-balancing

class in a policy map.

Server Farm-NAT The ACE is to apply dynamic NAT to traffic for this policy map.

1. In the NAT Pool ID field, enter the number of the pool of IP addresses that exist under the

VLAN specified in the VLAN Id field. Valid entries are integers from 1 to 2147483647. For

information on configuring NAT pools, see Configuring VLAN Interface NAT Pools and

Displaying NAT Utilization, page 10-32.

2. In the VLAN ID field, select the VLAN to use for NAT. Valid entries are integers from 2 to

4094.

3. In the Server Farm Type field, indicate whether the server farm is a backup or primary server

farm.

Set-IP-TOS The ACE is to set the IP Differentiated Services Code Point (DSCP) bit in the Type of Service

(ToS) byte. Once the IP DSCP bit is set, other Quality of Service (QoS) services can then operate

on the bit settings.

In the IP TOS Rewrite Value (Bytes) field, enter the IP DSCP value. Valid entries are integers from

0 to 255.

Table 12-20 Policy Map Actions for Load Balancing (continued)

Action Description