Any suggestions or advice on load balancer?

Similar Messages

• HT204406 i am trying to download purchased music from itunes store and i am only able to download partial album, i keep getting an error message 8003 .... any suggestions or advice?

  I keep getting err 8387& err 8003 coming up and the music does not download???
  #frustrated.com

  Hi there,
  I would recommend taking a look at the troubleshooting steps found in the article below.
  iTunes: Advanced iTunes Store troubleshooting
  http://support.apple.com/kb/TS3297
  -Griff W.

• How to properly load balance between diffrent server farms.

  Hi experts,
  We are using an ACE 4710. We chose for our server farms to load balance using the least_connections predictor. it seems to work fine inside the same server farm but is it working properly between server farms? It doesn't seem because some of my real servers seems to be more loaded than others. Each server farm are using the same real servers.
  Any idea about what is the problem or any suggestion regarding the best load balancing predictor we should use using this kind of configuration?
  Thank's to all.

  The ACE uses load-balancing algorithms or predictors to determine how to balance the traffic among the devices configured in the server farms, independent of the device type. For FWLB, we recommend that you use only the hash address source and the hash address destination predictors. Using any other predictor with FWLB may fail and block traffic, especially for applications that have separate control and data channels.
  Here is the configuration guide for the Cisco ACE 4700 Series Appliance Server Load-Balancing.
  http://www.cisco.com/en/US/docs/app_ntwk_services/data_center_app_services/ace_appliances/vA1_7_/configuration/slb/guide/fwldbal.html

• Any other options for load balancing

  hello everyone,
  i have been unsuccessful to implement load balancing effectively. have you come across any such problems with load balancing not working as expected? are there any othner options to implement load balancing?
  thank you in advance

  /* Style Definitions */
  table.MsoNormalTable
  {mso-style-name:"Table Normal";
  mso-tstyle-rowband-size:0;
  mso-tstyle-colband-size:0;
  mso-style-noshow:yes;
  mso-style-priority:99;
  mso-style-qformat:yes;
  mso-style-parent:"";
  mso-padding-alt:0cm 5.4pt 0cm 5.4pt;
  mso-para-margin-top:0cm;
  mso-para-margin-right:0cm;
  mso-para-margin-bottom:10.0pt;
  mso-para-margin-left:0cm;
  line-height:115%;
  mso-pagination:widow-orphan;
  font-size:11.0pt;
  font-family:"Calibri","sans-serif";
  mso-ascii-font-family:Calibri;
  mso-ascii-theme-font:minor-latin;
  mso-hansi-font-family:Calibri;
  mso-hansi-theme-font:minor-latin;
  mso-bidi-font-family:"Times New Roman";
  mso-bidi-theme-font:minor-bidi;}
  I do not see what you want to achieve or what you have tried to do. So please provide some more information.
  /André

• X.509 certificate based authentication with load balancer

  I've been asked to implement certificate-based authentication (CBA)
  on a weblogic cluster serving up web services. I've read through
  Chapter 10 (security) and understand the "Identity Assertion" concept.
  Environment:
  Weblogic 8.1 cluster fronted by a load-balancer that handles SSL and
  uses sticky-sessions.
  Question:
  If the load balancer is used to handle SSL, do I still need to turn
  on SSL on the weblogic cluster in order to use CBA? Is there another
  way to request the client's certificate?
  If the above is yes, what is the minnimal level of SSL? Does it have
  to be two-way?
  If SSL has to be turned on is there any reason to use the load
  balancer's SSL? Is there still a performance benefit?

  Hi George,
  If you want the client's cert, the server has to ask for it and this
  implies two-way SSL. Normal one-way SSL the server provides the cert to
  the client and the client decides if it wants to continue the handshake.
  If the client is OK with the server certs and two-way SSL is configured
  on the server, then the server will request the client send it's certs.
  If the client certs are OK, then the pipe is established.
  Concerning the load balancer I'm assuming it is simply providing a
  tunnel, but I don't have the experience to comment and it is something I
  would suggest that you that you seek guidance from our outstanding
  support team [1] or drop a note in the security newsgroup [2] for the
  experts to review.
  Regards,
  Bruce
  [1]
  http://support.bea.com
  [email protected]
  [2]
  http://newsgroups.bea.com/cgi-bin/dnewsweb?cmd=xover&group=weblogic.developer.interest.security
  George Coller wrote:
  >
  I've been asked to implement certificate-based authentication (CBA)
  on a weblogic cluster serving up web services. I've read through
  Chapter 10 (security) and understand the "Identity Assertion" concept.
  Environment:
  Weblogic 8.1 cluster fronted by a load-balancer that handles SSL and
  uses sticky-sessions.
  Question:
  If the load balancer is used to handle SSL, do I still need to turn
  on SSL on the weblogic cluster in order to use CBA? Is there another
  way to request the client's certificate?
  If the above is yes, what is the minnimal level of SSL? Does it have
  to be two-way?
  If SSL has to be turned on is there any reason to use the load
  balancer's SSL? Is there still a performance benefit?

• Load-Balancing with Coherence BackingMapListener, CacheStore etc?

  Hi -
  I am looking for advice on load-balancing across a cluster.
  Currently we insert objects into a Coherence cluster. Each storage node also runs a CEP instance. BackingMapListeners detect Coherence insert events, and inject the rows into the local CEP instance. The first channel in the CEP has a large buffer to allow the BML to return quickly without blocking.
  The CEP makes decisions about the events and emits these decisions as further events, which are merged back into the original data rows in Coherence (i.e. the primary data is updated with enrichments).
  This works fine until I saturate the CEP with a very high message rate, faster than the CEP and downstream components can keep up with. At this point the buffer between the BackingMapListener and the CEP starts to fill up. Once it is full, the BackingMapListener blocks, waiting for the CEP to take an event from the front of the queue before it can insert the latest event to the back of the queue.
  Once the BackingMapListener blocks, other updates to the cache are blocked - which means the downstream end of the CEP is deadlocked by the upstream end, which is waiting for the downstream end... Events move through at exactly one per minute, due to a timeout in the Coherence cache update.
  I recognise that I could (and probably should) copy the primary data into a separate cache as I merge the updates into it, to break this deadlock. But I wondered if anyone has used other mechanisms for load-balancing using Coherence partitioning, apart from the BackingMapListener.
  I looked at CacheStore, which seems tailor-made for this as it includes queuing and doesn't block other cache actions (although if it blocks for too long the guardian will kill it). The problem I have with CacheStore is that I can't distinguish between inserts (CEP event injection required) and updates (no CEP event required).
  I tried using BinaryEntryStore, where I can test BinaryEntry.getOriginalBinaryValue() for nulll to distinguish between inserts and updates, but I can't wire this into the cache using the Spring XML schema.
  Are there any other established patterns for this apart from breaking up the inserts and updates into separate caches?
  -thanks, Barney

  The Cisco 526 Wireless Express Mobility Controller can be used with up to six access points per controller. So 5 -6 access point would be a better option . Refer URL
  http://www.cisco.com/en/US/products/ps7320/products_data_sheet0900aecd8060c22b.html

• Sticky load balancing across 2 ports with cookies

  Hi,
  I have a server configuration where I have 1 top level Apache server that deals with SSL termination (and handles static content) and proxy passes dynamic content onto 2 Tomcat servers on 2 ports, one for http requests (9001) and one for the requests that were secure, but have now been un-encrypted by Apache (9002).  My 2 Tomcat servers are load balanced using a CSS and I need this load balancing to stick to the tomcat servers regardless of port so that the user is stuck to the same Tomcat server for their entire session. 
  I would like to use arrowpoint cookies to perform this stickyness, but the documentation suggests that arrowpoint cookie load balancing (in fact any cookie based load balancing) requires the port to be specified in the content rule.  Is this correct?  Is my only option to use the source IP for stickyness? I don't understand why the port should be required if the stickyness is via a cookie. Can I not simply configure my 2 tomcat servers as services with no port and add a single content rule that load balances these services using arrowpoint-cookie advanced balancing?
  service tomcat1
    ip address x.x.x.x
    active
  service tomcat2
    ip address x.x.x.x
    active
  owner me
     content sticky
       vip address x.x.x.x
       protocol tcp
       url "/*"
       add service tomcat-1
       add service tomcat-2
       advanced-balance arrowpoint-cookie
       active

  Angela-
  The issue with port is that cookies are very specifically HTTP only and the CSS has no way of knowing what protocol will hit a VIP prior to trying to address it as HTTP. Your issue is actually a bit clearer than it is initially led to be - you can still use 2 different rules by using the configuration below. 
  However, you might be headed for a headache if you don't implicitly control the client's actions.  By default, browsers don't generally send cookies cross-protocol and definitely not cross-domain.  Use something like httpwatch or iewatch to check out the headers your client sends to your site.  Make sure when the 200ok arrives with the set-cookie that the client sends that cookie in all preceeding packets that are HTTP and HTTPS both.
  service tomcat1
    string "tomcat1"
    ip address x.x.x.x
    active
  service tomcat2
    string "tomcat2"
    ip address x.x.x.x
    active
  owner me
     content sticky9001
       vip address x.x.x.x
       protocol tcp
       url "/*"
       port 9001
       add service tomcat-1
       add service tomcat-2
       advanced-balance arrowpoint-cookie
       active
     content sticky9002
       vip address x.x.x.x
       protocol tcp
       url "/*"
       port 9002
       add service tomcat-1
       add service tomcat-2
       advanced-balance arrowpoint-cookie
       active
  With this configuration, the CSS will use the "string" as the cookie value. So if the client were to recieve set-cookie: ArrowpointCookie=tomcat1, it should use it for either rule, and end up on tomcat1 accessing either VIP.
  Regards,
  Chris

• General Question: want some suggestion or advice, I am New to OS Leopard

  I am going to be switching and buying a newer computer (Mac Mini with intel on board with the new OS Leopard) I am going to be new using Leopard.
  I was reading the latest issue of Macword that I had gotten in my mail. One of the short artcles' in that issue, I read that someone wasn't happy with their new os-Leopard, they had installed it on their duel-core G5. The problems they had was crashes, freezes, jumpy scrolling and slow web page loading, and sluggish application switching, and that they wanted to go back to their old OS Tiger.
  This New Mac Mini with intel on board computer that I am getting will have the new OS already installed in the computer, it is a 2GHz Duo Processor with 120GB HD and a SuperDrive.
  ( This maybe a stupid Question, but I am a little concerned) I am new to this OS Leopard, I would like any suggestions or advice on is there a chance that I might have some of those problems on my new OS? Has anyone on this circuit had any of those problems on their new OS?
  I am eager and excited to try out my new Computer and new OS but after reading that little artcle I am a little concerned that I may get that same problem.
  What is your feed back or suggestion or advice?
  Thanks.

  Trisha, I had all those issues and more when I upgraded from 10.4.11 to Leopard, and wished badly for Tiger to be back. But since the 10.5.2 update most things have been fixed, and anyway it definitely runs better on an Intel than a G5 Mac (I have both.) Personally, I think Tiger is a more stable OS, but now the Leopard bugs are mostly minor quibbles and there is no need to hold back, Just be sure you get 10.5.2 on it or update immediately and you'll be very happy.
  Enjoy!
  Rod

• DS to BW load balancing

  Dear all,
  I have a doubt regarding load balancing in PRD. Our team is loading data through DS 12.2.2.3 to SAP BW Master / transaction Infosources.
  SAP BW system has five Application Servers / instances to balance the load. BW target data store is configured to connect to the Central Instance of SAP BW.
  Since we are connected to the Central instance / application server of BW system from DS, will BW system be able to balance the load across multiple instances?
  Since BW Server has multiple instances to balance the load, is there any way we can utilise these BW multiple instances from Data Services?
  Can you share your thoughts on this? Appreciate your responses.
  Regards,
  Suneer.

  Hi Suneer,
  There are several ways how DS and BW can interact, so it might depend on what scenario you are using.
  I can think of the following scenario's:
  1. A DS job is executed from admin console and loads into a BW target datasource.
  This should use any available server, according to load balancing settings. It is not possible to force the process to use a specific server.
  2. A process chain starts an infopackage, which in turn starts a DS job
  BW will use the server chosen at the time of scheduling, if everything is configured correctly and scheduled correctly it will use any avaialble server conform load balancing settings. You can set this to run on a specific server (but I would only recommend this in very special circumstances).
  3. DS triggers a process chain
  Again, BW will use the settings on the process chain.
  4. BW runs an execution command, which starts a DS job
  Well, this is not a relevant scenario as it does not update anything on BW - unless the execution command then runs a job which loads data into BW, which is described in scenario 1.
  I hope this makes sense. Let me know if you have any other scenario's or concerns.
  Can I just ask why you are concerned about this load balancing? I have not have load balancing problems with DS/BW but I have had plenty of problems around concurrent use of the RFC connection between DS/BW. 'Multithreading' was not supported until 12.2.3.2 and you mentioned you run on 12.2.2.3, so potentially this is a problem for you.
  Jan.

• Lync 2013 Enterprise load balancing on the front end and edge pool

  Hi,
  I am setting up a Lync 2013 Enterprise deployment consisting of a Front End pool (x2 FE servers) and an Edge pool (x2 Edge servers).  I'm seeing some conflicting advice regarding load balancing using hardware or DNS for the front end and the edge.
  On the front end I have 2 internal DNS records 'lyncfepool1.contoso.local' each of which map to one of the IPs of the FE servers.  I've used my details to populate the Detailed Design Planner excel spreadsheet and am told that I require a HLB to load
  balance my front end pool.  I'm aware of the need to load balance HTTPS traffic internally (which will be done by TMG) however other traffic to the front end (SIP, etc) can be balanced by DNS only, and not require a HLB?
  Can someone clarify the front end requirement?
  Also - looking now at the edge pool - this site again have two edge servers in a pool.  We are using a total of six private IP addresses, two per edge service (2 x av.contoso.com, 2 x sip.contoso.com and 2 x webcon.contoso.com).  These will be
  NAT'ed by the external firewall and directed to the respective external (DMZ) IP addresses on the Edge servers on port 443.  I know this isn't true roundrobin due to the intelligence of the Lync client when connecting (in that the Lync client will connect
  to one of the public IPs and if it can't connect, it will know to connect to the other service IP), however I want to clarify this set up, particularly the need to direct the external public IP traffic at the DMZ Edge IP specified in the topology builder.
  I've attached a basic diagram of the external/DMZ/Edge side which hopefully helps with this question
  Persevere, Persevere, Per..

  That is because you will always need HLB for a front-end server since it hosts the Lync webservices which use HTTP/HTTPS traffic.
  The description on the calculation tool also describes this correctly:
  Supports Standard and Enterprise pools (up to 12 nodes), with pure device-based load balancing or a combination of DNS load balancing and device-based load balancing (for
  Lync web services)
  You can use either Hardware or DNS loadbalancing for SIP traffic only, but you will always need a HLB for the webservices.  Both are applicable for the Front-End so you have either
  full HLB for both SIP and HTTP(S) traffic
  DNS LB for SIP traffic and HLB for HTTP(S) traffic
  Hope this is more clear :-)
  Lync Server MVP | MCITP Lync Server 2010 | If you think my post is the answer to your question, please mark it as answer so future visitors can easily find it.

• Firefox crashed down many times (6-7) and doesn't open anymore giving me a warning sound each time i try to open it any suggestions?

  I'm using firefox (now 27b2) having many tabs opened and i got used to the fact that many times crashes down ... each time i restore the session and it starts again ... but yesterday it "died" on me. Each time i'm trying to run it i get a warning sound and firefox refuses to open. As far as i remember i didn't install any soft lately ... but right before it's death, my pc was getting frozen and need it reboot ... that happened 3-4 times and then firefox "left" this cruel world. I run S&D, Malware bytes, Avast IS ... found nothing. Tried to open it in safe mode unsuccesfuly getting the same warning sound. I decided to uninstall it (Revo uninstaller) and used Ccleaner to wipe the leftovers then i tried to reinstall it but when running setup i get a message says "File corrupt" and everything ends here. I tried firefox 26 stab and it worked like a charm but the question remains the same why the beta version refuses to run and/or to be reinstalled ... If there is someone out there (I'm sure there are many...) with any suggestions or advices i would be very grateful ...Thank you all...

  Hello,
  Certain Firefox problems can be solved by performing a ''Clean reinstall''. This means you remove Firefox program files and then reinstall Firefox. Please follow these steps:
  '''Note:''' You might want to print these steps or view them in another browser.
  #Download the latest Desktop version of Firefox from http://www.mozilla.org and save the setup file to your computer.
  #After the download finishes, close all Firefox windows (click Exit from the Firefox or File menu).
  #Delete the Firefox installation folder, which is located in one of these locations, by default:
  #*'''Windows:'''
  #**C:\Program Files\Mozilla Firefox
  #**C:\Program Files (x86)\Mozilla Firefox
  #*'''Mac:''' Delete Firefox from the Applications folder.
  #*'''Linux:''' If you installed Firefox with the distro-based package manager, you should use the same way to uninstall it - see [[Installing Firefox on Linux]]. If you downloaded and installed the binary package from the [http://www.mozilla.org/firefox#desktop Firefox download page], simply remove the folder ''firefox'' in your home directory.
  #Now, go ahead and reinstall Firefox:
  ##Double-click the downloaded installation file and go through the steps of the installation wizard.
  ##Once the wizard is finished, choose to directly open Firefox after clicking the Finish button.
  Please report back to see if this helped you!
  Thank you.
  <!-- VERY important to include-->
  <b>WARNING:</b> Do not run Firefox's uninstaller or use a third party remover as part of this process, because that could permanently delete your Firefox data, including but not limited to, extensions, cache, cookies, bookmarks, personal settings and saved passwords. <u>These cannot be recovered unless they have been backed up to an external device!</u>

• Access to load balanced web site

  I have a wierd problem where browsers on one subnet in my company cannot access any web sites that are load balanced in our data center.
  Other subnets can access the load balanced sites fine.
  Browsers on the subnet in question CAN access other non-loadbalanced sites within the same dc.
  Any thoughts on how to go about troublshooting?

  HI,
  have a look at the routing table of the servers.
  Is the return traffic (towards the clients) forwarded towards the loadbalancer from the servers or bypassing=
  Are you using source limitation on the loadbalancer?
  Are you using source nat?
  Please paste the config of the loadbalancer, the routing table of the servers and the source-address that gives you a hard time and we can have a look at it.
  Kind Regards,
  Joerg
  PS
  IN case of any doubts take a sniffer trace in front of the loadbalancer and behind the load balancer. If necessary additional ones at the client and at the server

• Certificate based authentication with SSL load balancer

  I've been asked to implement certificate-based authentication (CBA)
  on a weblogic cluster serving up web services. I've read through
  Chapter 10 (security) and understand the "Identity Assertion" concept.
  Environment:
  Weblogic 8.1 cluster fronted by a load-balancer that handles SSL and
  uses sticky-sessions.
  Question:
  If the load balancer is used to handle SSL, do I still need to turn
  on SSL on the weblogic cluster in order to use CBA? Is there another
  way to request the client's certificate?
  If the above is yes, what is the minnimal level of SSL? Does it have
  to be two-way?
  If SSL has to be turned on is there any reason to use the load
  balancer's SSL? Is there still a performance benefit?

  I think the simplest and most secure way is to have the servers configured for
  2-way ssl, since this would ensure that the certificate they receive and use for
  authentication has been validated during the ssl handshake. In this case the load
  balancer itself does not need to and cannot do the handshaking, and would need
  to pass the entire SSL connection through to the WLS server (ie: act similar to
  a router)
  Pavel.
  "George Coller" <[email protected]> wrote:
  >
  I've been asked to implement certificate-based authentication (CBA)
  on a weblogic cluster serving up web services. I've read through
  Chapter 10 (security) and understand the "Identity Assertion" concept.
  Environment:
  Weblogic 8.1 cluster fronted by a load-balancer that handles SSL and
  uses sticky-sessions.
  Question:
  If the load balancer is used to handle SSL, do I still need to turn
  on SSL on the weblogic cluster in order to use CBA? Is there another
  way to request the client's certificate?
  If the above is yes, what is the minnimal level of SSL? Does it have
  to be two-way?
  If SSL has to be turned on is there any reason to use the load
  balancer's SSL? Is there still a performance benefit?

• Ask the Expert: Configuration and Troubleshooting the Cisco Application Control Engine (ACE) load balancer

  With Ajay Kumar and Telmo Pereira 
  Welcome to the Cisco Support Community Ask the Expert conversation. This is an opportunity to learn and ask questions about configuration and troubleshooting the Cisco Application Control Engine (ACE) load balancer with Cisco expert Ajay Kumar and Telmo Pereira. The Cisco ACE Application Control Engine Module for Cisco Catalyst 6500 Series Switches and Cisco 7600 Series Routers is a next-generation load-balancing and application-delivery solution. A member of the Cisco family of Data Center 3.0 solutions, the module: Helps ensure business continuity by increasing application availability Improves business productivity by accelerating application and server performance Reduces data center power, space, and cooling needs through a virtualized architecture Helps lower operational costs associated with application provisioning and scaling
  Ajay Kumar  is a customer support engineer in the Cisco Technical Assistance Center in Brussels, covering content delivery network technologies including Cisco Application Control Engine, Cisco Wide Area Application Services, Cisco Content Switching Module, Cisco Content Services Switches, and others. He has been with Cisco for more than four years, working with major customers to help resolve their issues related to content products. He holds DCASI and VCP certifications. 
  Telmo Pereira is a customer support engineer in the Cisco Technical Assistance Center in Brussels, where he covers all Cisco content delivery network technologies including Cisco Application Control Engine (ACE), Cisco Wide Area Application Services (WAAS), and Digital Media Suite. He has worked with multiple customers around the globe, helping them solve interesting and often highly complex issues. Pereira has worked in the networking field for more than 7 years. He holds a computer science degree as well as multiple certifications including CCNP, DCASI, DCUCI, and VCP
  Remember to use the rating system to let Ajay know if you have received an adequate response.
  Ajay and Telmo might not be able to answer each question due to the volume expected during this event. Remember that you can continue the conversation on the Data Center sub-community discussion forum Application Networking shortly after the event.
  This event lasts through July 26, 2013. Visit this forum often to view responses to your questions and the questions of other community members.

  Hello Krzysztof,
  Another set of good/interesting questions posted. Thanks! 
  I will try to clarify your doubts.
  In the output below both resources (proxy-connections and ssl-connections rate) are configured with a min percentage of resources (column Min), while 'Max' is set to equal to the min.
  ACE/Context# show resource usage
                                                       Allocation
          Resource         Current       Peak        Min        Max       Denied
  -- outputs omitted for brevity --
    proxy-connections             0      16358      16358      16358      17872
    ssl-connections rate          0        626        626        626      23204
  Most columns are self explanatory, 'Current' is current usage, 'Peak' is the maximum value reached, and the most important counter to monitor 'Denied' represents the amount of packets denied/dropped due to exceeding the configured limits.
  On the resources themselves, Proxy-connections is simply the amount of proxied connections, in other words all connections handled at layer 7 (SSL connections are proxied, as are any connections with layer 7 load balance policies, or inspection).
  So in this particular case for the proxy-connections we see that Peak is equal to the Max allocated, and as we have denies we can conclude that you have surpassed the limits for this resource. We see there were 17872 connections dropped due to that.
  ssl-connections rate should be read in the same manner, however all values for this resource are in bytes/s, except for Denied counter, that is simply the amount of packets that were dropped due to exceeding this resource. 
  For your particular tests you have allocated a min percentage and set max equal to min, this way you make sure that this context will not use any other additional resources.
  If you had set the max to unlimited during resource allocation, ACE would be allowed to use additional resources on top of those guaranteed, if those resources were available.
  This might sound a great idea, but resource planning on ACE should be done carefully to avoid any sort of oversubscription, specially if you have business critical contexts.
  We have a good reference for ACE resource planning that contains also description of all resources (this will help to understand the output better):
  http://www.cisco.com/en/US/docs/interfaces_modules/services_modules/ace/v3.00_A2/configuration/virtualization/guide/config.html#wp1008224
  1) When a resource is utilized to its maximum limit, the ACE denies additional requests made by any context for that resource. In other words, the action is to Drop. ACE  should in theory silently drop (No RST is sent back to the client). So unless we changed something on the code, this is what you should see.
  To give more context, seeing resets with SSL connections is not necessarily synonym of drops. As it is usual to see them during normal transactions.
  For instance Microsoft servers are usually ungracefully terminating SSL connections with RESET. Also when there is renegotiation during an SSL transaction you may see RESETS, but this will pass unnoticed for end users. 
  2)  ACE will simply drop/ignore new connections when we reach the maximum amount of proxied connections for that context. Exisiting connections will continue there.
  As ACE doesn't respond back, client would simply retransmit, and if he is lucky maybe in the next attempt he will be able to establish the connection.
  To overcome the denies, you will definitely have to increase the resource allocation. This of course, assuming you are not reaching any physical limit of the box.
  As mentioned setting max as unlimited might work for you, assuming there are a lot of unused resources on the box.
  3)  If a new connection comes in with a sticky value, that matches the sticky entry of a real server, which is already in MAXCONNS state, then both the ACE module/appliance should reject the connection and that sticky entry would be removed.
  The client would at that point reestablish a new connection and ACE would associate a new sticky entry with the flow for a new RSERVER after the loadbalancing decision.
  I hope this makes things clearer! Uff...
  Regards,
  Telmo

• RV320, load balancing problem

  Hi,
  How do I force the router to use WAN1 till it's saturated, and ther switch to WAN2 when needed. I've already configured the bandwidth correctly for each WAN, but it seems that some clients use WAN1, others use WAN2, disregarding the fact that they should use WAN1 as primary and the bandwidth it's not saturated by any other client.

  Only from load balancing point of view cluster is not really needed.
  apart from session replication and failover capabilities, few more benefits are there with clustering only if you are using a web server also.
  Stuck threads can be due to lot's of problems like application issues, load issues etc, So first make sure you are getting stuck thread on both servers or only on one, if on one, then in this case your load balancing not working properly and sending more load to that server, and if you are getting stuck threads on both then try to add one more managed server.
  Regards
  Mukesh Negi
  http://weblogicserveradministration.blogspot.com