ACE - TCP Options for Proxy-Connections

Hi all,
I have the issue that my ACE does not seem to allow tcp options with L7 proxied connections to the servers. For the client side connection I see the TCP option timestamp for example, but unfortunately the ACE itself does not put the timestamp option into its own TCP connection to the rserver. A 'parameter-map type connection' does only seem to have an effect on L4 connections, not proxied ones. Does anybody know a way how to tell the ACE to have e.g. a timestamp option in the TCP connection to the server as part of a L7 loadbalancing?
Any help is highly appreciated!
Thanks,
Daniel

Daniel,
we do not support timestamp at L7.
I think we only support window scaling.
Gilles.

Similar Messages

  • How to configure XI and BI for proxy connection?

    Hi BI guruz!
    I am trying to set up a proxy connection between SAP BI (Vr7.0 SPS 09) and SAP XI (3.0 SPS 19). for this i am planning to follow the How to document (How to Integrate XI and BI in SAP NetWeaver 2004s.pdf) as given by SAP.
    I am new to the aspect of proxy connections... hence i am stuck at the very first step.
    In the pre-requisite section of the doc says
    1. The BW is integrated to the XI landscape
    2. Create a software component in the Software Landscape Directory.
    Can any one please tell me the steps for doing this, the tcodes and all , and how to check for the connections?
    Looking forward to hearing from you, as I read a lot of matter from SDN forums and help.sap.com sites, but cudnt figure out what all i have to for this...
    Thanks,
    Sush

    Hi Sush,
    there is a how-to guide on this topic, did you check it out?
    https://www.sdn.sap.com/irj/sdn/go/portal/prtroot/docs/library/uuid/40574601-ec97-2910-3cba-a0fdc10f4dce
    Hope it is helpful for you!
    Regards,
    Sally

  • ACE best practice for proxy servers

    Dear,
    I would like to know which is the best practice scenario to load balance proxy servers:
    1- Best practice to have transparent proxy or proxy setting on the web browser?
    2- for transparent proxy: best practice to use ip wccp or route-map pointing to the ACE VIP?
    3- What are the advantages and disadvantages of transparent proxy V/S web browser proxy setting.
    Regards,
    Pierre

    Hi,
    Sorry, that seem to be an internal link.
    You can also check the below post where a sample config is posted here for transparent cache.
    https://supportforums.cisco.com/thread/129106
                   Best practice :
    VIP would be a catch all address.
    To optimize the caching predictor hash url is used.
    You can also use mac-sticky on interface so proper flow persistence is used within ACE
    The mode is transparent so we preserve the destination ip address.
    Regards,
    Siva

  • ACE maintenance page for HTTPS connection (non offloaded mode)?

    Hello experts
    how do we configure a "redirected" maintenance page for HTTPS Serverfarm when the serverfarm is down/probefailed?
    lets say users are accessing https://xyz.com, and if the serverfarm is down, I want users to get redirected to https://abc.com or even http://abc.com
    (getting a certificate error or a https to http redirection error is acceptable)
    What i understand from TAC, since we are not terminating SSL on ACE, we have few restrcitions on using redirect. Thereafter, TAC hasnt been too helpful on this query.
    HTTPS connection is directly terminated on Server with certificate.  And we are using SSL Session Stickyness on ACE  (I know not the best thing to do..)
    Pls. assist.

    so do i assume there is no way to do this without using ACE for SSL termination?
    In our case, not using ACE for termiating SSL connections is to draw a line between Network and System administration, a business requirement.
    Thanks for your replies.

  • Options for PS3 connection beyond wireless range

    I'm technically challenged, so bear with me..
    The coax from the Verizon box splits in my attic - 1 line goes to my m1424wr wireless router and the other goes across the house to my FIOS DVR. My PS3 is sitting right next to the DVR but it's too far from the wireless router to get a solid signal.
    My questions is this -  can I split the coax running to the DVR so that I can use it as the internet connection for both the DVR and the PS3? (wired or another router) Or do I have to use the internet connection at the current router? (wireless repeater, powerline adapter, run a cat5, etc..)
    Thanks!

    Powerline reduces in speed the farther you are away from it, but generally unless your wiring is very old or you've got very noisy electrical the Powerline adapters typically work pretty well.
    The two MoCa adapters mentioned will work fine. Verizon's own adapter is in fact from ActionTec. Even if the diagram shows it going from the Verizon router to the bridge, as long as the Verizon router is connected to the same Coaxial network as the Bridge and DVR are connected to (which is most likely the case, along with the ONT for MoCa WAN connectivity), the MoCa bridge will work. MoCa is after all how the Set Top Box gets it's guide and gadget data, and runs VOD. Rule of thumb is, same Coaxial network as set top boxes, it should work without an issue as long as you haven't gone over MoCa's device limit of 16 coaxial devices I believe per MoCa Network.
    So yes. Use a 5-1000Mhz (1Ghz) bi-directional (!) splitter with two legs and ideally low attenuation for splitting the feed going to your Set Top Box. Put the STB on one leg, MoCa brige on the other, and watch it work. As a note, Verizon gives out splitters from PDI but other brands granted you meet the criteria above should work fine with FiOS. As long as your MoCA speed stays above 200Mbps and TV is not pixelating you're golden.
    ========
    The first to bring me 1Gbps Fiber for $30/m wins!

  • Configurations required at PI for proxy connection

    Hi All,
    A proxy  is to be generated from ECC to PI .Can anyone please tell the configurations that need to be done from PI side. While testing the proxy through SPROXY, we are getting the error message, which specifies the logical  port is not assigned to proxy class.

    Check these StepByStep Help:
    http://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/e0ac1a33-debf-2c10-45bf-fb19f6e15649?QuickLink=index&overridelayout=true
    http://wiki.sdn.sap.com/wiki/display/XI/Step-by-stepFTPtoABAPProxy

  • Disk monitoring options for firewire connected hard drives

    I recently connected a 750 gig Western Digital hard drive to my Mac via Firewire. I just learned that Disk Utility's S.M.A.R.T. capability will not monitor hard drives connected via Firewire or USB.
    Does anyone have suggestions on 3rd party applications that might give me some piece of mind that the disk is in good health?
    Thank you!

    Hi David,
    most (if not all) FireWire and/or USB connected external HDs don't report any kind of S.M.A.R.T. status. Even if they do, OSX has not implemented them.
    See here:
    http://en.wikipedia.org/wiki/Self-Monitoring%2CAnalysis%2C_and_ReportingTechnology
    Even the third-party tools like SmartReporter or smartmontools can't get informations from FW/USB-HDs.
    Only eSATA connected external HDs are supported.
    Sorry
    Stefan

  • Need a slow download option for Satellite Internet Connections

    Adobe Acrobat X fails to download completely when using Satellite internet connections.  The executable downloads but the 51Mbytes of software only gets part way through before failing as it is requires cable/ADSL speeds.
    Please, those of us in the country who are remote, rely on satellite internet to reduce travel costs.  It would be nice if adobe would provide a download option for slow connections.

    http://prodesigntools.com/tag/ddl
    Mylenium

  • Slow TCP performance for traffic routed by ACE module

    Hi,
    the customer uses two ACE20 modules in active-standby mode. The ACE load-balances servers correctly. But there is a problem with communication between servers in the different ACE contexts. When the customer uses FTP from one server in one context to the other server in other context the throughput through ACE is about 23 Mbps. It is routed traffic in ACE:-(  See:
    server1: / #ftp server2
    Connected to server2.cent.priv.
    220 server2.cent.priv FTP server (Version 4.2 Wed Apr 2 15:38:27 CDT 2008) ready.
    Name (server2:root):
    331 Password required for root.
    Password:
    230 User root logged in.
    ftp> bin
    200 Type set to I.
    ftp> put "|dd if=/dev/zero bs=32k count=5000 " /dev/null
    200 PORT command successful.
    150 Opening data connection for /dev/null.
    5000+0 records in.
    5000+0 records out.
    226 Transfer complete.
    163840000 bytes sent in 6.612 seconds (2.42e+04 Kbytes/s)
    local: |dd if=/dev/zero bs=32k count=5000  remote: /dev/null
    ftp>
    The output from show resource usage doesn't show any drops:
    conc-connections              0          0     800000    1600000          0
      mgmt-connections             10         54      10000      20000          0
      proxy-connections             0          0     104858     209716          0
      xlates                        0          0     104858     209716          0
      bandwidth                     0      46228   50000000  225000000          0
        throughput                  0       1155   50000000  100000000          0
        mgmt-traffic rate           0      45073          0  125000000          0
      connections rate              0          9     100000     200000          0
      ssl-connections rate          0          0        500       1000          0
      mac-miss rate                 0          0        200        400          0
      inspect-conn rate             0          0        600       1200          0
      acl-memory                 7064       7064    7082352   14168883          0
      sticky                        6          6     419430          0          0
      regexp                       47         47     104858     209715          0
      syslog buffer            794624     794624     418816     431104          0
      syslog rate                   0         31      10000      20000          0
    There is parameter map configured with rebalance persistant for cookie insertion in the context.
    Do you know how can I increase performance for TCP traffic which is not load-balanced, but routed by ACE? Thank you very much.
    Roman

    Default inactivity timeouts used by ACE are
    icmp 2sec
    tcp 3600sec
    udp 120sec
    With your config you will change inactivity for every protocol to 7500sec.If you want to change TCP timeout to 7500sec and keep the
    other inactivity timeouts as they are now use following
    parameter-map type connection GLOBAL-TCP
    set timeout inactivity 600
    parameter-map type connection GLOBAL-UDP
    set timeout inactivity 120
    parameter-map type connection GLOBAL-ICMP
    set timeout inactivity 2
    class-map match-all ALL-TCP
    match port tcp any
    class-map match-all ALL-UDP
    match port tcp any
    class-map match-all ALL-ICMP
    match port tcp any
    policy-map multi-match TIMEOUTS
    class ALL-TCP
    connection advanced GLOBAL-TCP
    class ALL-UDP
    connection advanced GLOBAL-UDP
    class ALL-TCP
    connection advanced GLOBAL-ICMP
    and apply service-policy TIMEOUTS globally
    Syed Iftekhar Ahmed

  • Displaying Host details for active Proxy Connections

    It is possible via JMX to display the number of active connections associated with Proxy services.
    For problem resolution it would be very useful to determine the hosts that are connected. I already have a mechanism of capturing new connection requests (for logical connection throttling) so I can log the host details when a new connection is used - but my preference would be to view this in realtime e.g. via JMX. (Similar in concept to viewing all JMS clients that are connected to a JMS server).
    Q1. Is there a way the above can be achieved and/or is there any intention to move this feature in to the core product?
    Q2. If my client VM that has an open connection dies unexpectedly how quickly will the Proxy service recycle the connection and decrement the active connection count?
    Thanks,
    Simon

    Q1: It is our policy to not comment on contents/dates of future releases in the forum. However, Oracle is always looking to improve the usability and manageability of Coherence. To help me advocate this feature, could you elaborate on the information being collected, the usage models and the value proposition.
    To help with the short term issue, The information you currently logging can be exposed through JMX by creating a custom MBean. The custom MBean is a combination of an Interface and an Implementation.
    To create a custom MBean "ConnectionCounter":
    Define the interface:
    Interface ConnectionCounterMBean
    public int getConnectionCount();
    public class ConnectionCounter
    implements ConnectionCounterMBean
    public int getConnectionCount()
    // return the connection count.
    Register the custom MBean:
    http://wiki.tangosol.com/display/COH33UG/Manage+Custom+MBeans+within+the+Coherence+Cluster
    Q2: A Coherence*Extend service has several mechanisms for detecting dropped connections. Some mechanisms are inherent to the underlying protocol (i.e. a javax.jms.ExceptionListener in Extend-JMS and TCP/IP in Extend-TCP), whereas others are implemented by the service itself. The latter mechanisms are configured via the <outgoing-message-handler> configuration element.
    The primary configurable mechanism used by a Coherence*Extend client service to detect dropped connections is a request timeout. When the service sends a request to the remote cluster and does not receive a response within the request timeout interval (see <request-timeout>), the service assumes that the connection has been dropped. The Coherence*Extend client and clustered services can also be configured to send a periodic heartbeat over the connection (see <heartbeat-interval> and <heartbeat-timeout>). If the service does not receive a response within the configured heartbeat timeout interval, the service assumes that the connection has been dropped.
    For more information:
    http://wiki.tangosol.com/display/COH33UG/Configuring+and+Using+Coherence*Extend
    Hope this helps,
    Everett Williams
    Coherence development team

  • I often download tv shows on apple tv. All of a sudden I don't have the option to download tv shows but can download movies. Internet connection is good. I simply don't have the search or download options for tv. What is happening?

    I often download tv shows on apple tv. All of a sudden, my screen does not display download options for tv shows. I can download movies no problem
    and the Internet connection is good. It just no longer shows options for tv shows except for my tv shoes (already downloaded). what is going on?

    Welcome to the Apple Community.
    Check your store location is set correctly, if this doesn't help, try restarting the Apple TV by removing ALL the cables for a 30 seconds.

  • I am using SURPLUSMETER :) I am also using Apple Airport Time Capsule as my Router that is connected to my Satellite dish Internet Modem ... Now on the Surplusmeter I have the option for PPP Modem . Ethernet Port , Airport , Network Card ,

    I am using SURPLUSMETER I am also using Apple Airport Time Capsule as my Router that is connected to my Satellite dish Internet Modem ... Now on the Surplusmeter I have the option for PPP Modem . Ethernet Port , Airport , Network Card , & Adaptor .
    Which one can I use properly to monitor all the wireless Devices in my hous

    Actually, none of the options will do what you are looking for it to do. That is because, this application only monitors the traffic from the device it is hosted on. That would also mean that you would have to run a copy on each computer that will access the Internet on your network; note their individual usages, and then, combine them to get an idea of the total usage.
    However, if you are only interested in the amount of Wi-Fi traffic that only your computer is seeing, then the "AirPort Network Card" option would be the correct choice.

  • My ipod touch 4g doesn't show option for os update in setting-general page. Can i update it via itunes by connecting it to computer?

    My ipod touch 4g doesn't show option for ios update in setting-general page. Can i update it via itunes by connecting it to computer?

    Try:
    - iOS: Not responding or does not turn on
    When it says place the iPod in recovery mode ue one of these programs:
    For PC
    RecBoot: Easy Way to Put iPhone into Recovery Mode
    If necessary:
    Download QTMLClient.dll & iTunesMobileDevice.dll for RecBoot
    For MAC or PC
    The Firmware Umbrella - TinyUmbrella
    - If not successful and you can't fully turn the iOS device fully off, let the battery fully drain. After charging for an least an hour try the above again.
    - Try on another computer
    - If still not successful that usually indicates a hardware problem and an appointment at the Genius Bar of an Apple store is in order.
    Apple Retail Store - Genius Bar       

  • I have just transferred my iTunes library from a hard drive previously connected to a windows laptop to a MacBook Pro and now all my options for editing info are greyed out. I have seen the answers if still using windows but could find a similar situation

    I have just transferred my iTunes library from a hard drive previously connected to a windows laptop to a MacBook Pro and now all my options for editing info are greyed out. I have seen the answers if still using windows but could find a similar situation to this one.

    Eels290776 wrote:
    if my external hard drive is not connected to either of my machines, and I download something onto my iMac and then something different onto my Macbook, where are my machines going to be storing the new downloaded media
    when the drive is not connected, +iTunes media folder location+ will default back to <MacintoshHD>/users/<yourname>/music/iTunes/iTunes music (or media)
    and when I next connect the external hard drive how will I easily get the newly downloaded media onto the external HD
    you'd have to point +iTunes media folder location+ back to the external via preferences > advanced > iTunes media folder location, then file > library, organize library > consolidate files
    and essentially, to have it easily readable on both machines?
    in that case it might be best to copy the entire iTunes folder to the external. then, on each machine, launch iTunes while pressing option on your keyboard. when prompted, click on +choose library+ and navigate to the iTunes folder on the external.
    note only one iTunes can access the iTunes library @ a time !
    also, make sure the external is mounted on either machine before launching iTunes.
    JGG

  • HT1212 my itunes says it can not sync my ipod touch key in password on the device but my ipod touch says ipod disabled connect to itunes and doesnt give a option for my password how do I unlock my ipod

    my itunes says it can not sync my ipod touch key in password on the device but my ipod touch says ipod disabled connect to itunes and doesnt give a option for my password how do I unlock my ipod

    See Here  >  http://support.apple.com/kb/HT1808
    You may need to try this More than Once...  Be sure to Follow ALL the Steps...
    Take your time... Pay particular attention to Steps 3 and 4.
    After you have Recovered your Device...
    Re-Sync your Content or Restore from the most recent Backup...
    Restore from Backup  >  http://support.apple.com/kb/ht1766

Maybe you are looking for