Is it possible to use UCS Blade Servers in ACE Load Balancing
Hi all ,
Is it possible to use UCS Blade Servers in ACE Load Balancing ?? Please note that UCS Blade Servers are not connected directly to 6500 Switch where ACE Module installed .i am expecting a good suggestion from whether ACE or Switching Expert
Thanks in advance
Sanjeevi
There is nothing that would prevent you from loadbalancing the applications that run on UCS servers. ACE can loadbalance applications that are directly L2 attached (bridged or routed mode) or even servers that are multiple hops L3 hops away using one-armed mode with source nat. The key to this is that the return traffic from the server needs to make it back to the ACE.
Similar Messages
-
ACE load balancing and testing using soapUI
Hey, I am trying to crowd source a solution for this problem.
A client is testing using soapUI to an application that is being load balanced via ACE. There are two webservers behind the VIP servicing the client request. When client tests, requests are timing out per the soapUI log. A packet capture was taken and it clearly shows that ACE is not forwarding the HTTP data back to the client. When client tests by bypassing the ACE load balancer, it works fine. But, there are other clients from other applications that are making successful connection to the load balanced application via the VIP.
Question, is there any thing unique with making HTTP/XML based requests using soapUI? LB configuration is shown below:
class-map match-all EAI_PWS_9083
2 match virtual-address 10.5.68.29 tcp eq 9083
serverfarm host EAI_PWS_9083
description WebSphere Porduction
failaction purge
probe tcp9083
rserver ESSWSPAPP01 9083
inservice
rserver ESSWSPAPP02 9083
inservice
policy-map type loadbalance first-match L7_POLICY_EAI_PWS_9083
class class-default
serverfarm EAI_PWS_9083
policy-map multi-match L4SLBPOLICY
class EAI_PWS_9083
loadbalance vip inservice
loadbalance policy L7_POLICY_EAI_PWS_9083
loadbalance vip icmp-reply active
appl-parameter http advanced-options CASE_PARAM
parameter-map type http CASE_PARAM
case-insensitiveHi,
Your configuration looks fine. I am not familiar with soapUI but if it is like a normal TCP connection followed by HTTP requests, i don't see why this shouldn't work.
Do you know if there is a difference while using soapUI and normal request using browser?
Regards,
Kanwal -
Any reference site using CISCO or Big -IP for load balancing
we are considering switch based load balancing solution for middle tier. Are there any pointers , reference sites ?
I am aware of sites using Metrics Server for forms server load balancing. We are not planning to use MS.
regards
shrikantHi Naveen,
You need to do following steps (Try first in Test env ;)
1. Login in to Oracle Applications Manager Portal
2. Navigate to AutoConfig section (Site Map->AutoConfig)
Configuration Wizards
Click on "Launch Wizards"
3. Fill in fields as instructed.
(Basically you need to put Vhostname + Apache Port number)
4. Run autoconfig
If you haven't got those wizards:
1. Install Latest OAM patches (It is good idea to be on the latest patches of technology stack of Apps).
2. Or if you cant, you can to try edit Context XML file for each server manually:
2.a
s_webentryhost <Vhost>
t_session_persistent true
t_dns false
s_webentrydomain <your domain>
s_webentryurlprotocol http
s_active_webport 8005
-- If you havent got mentioned parameters in the XML context file you need to apply latest template autoconfig patches
2.b
run autoconfig
Hope it helps,
Yury -
ACE: load balancing servers using DMZ ports on FWSM
devices; (2 core with the ff config)
6500
fwsm
idsm
msfc
SETUP;
Servers are connected to the dmzs on the core
REQUIREMENT;
to load balance the servers
QUESTION;
Using the ACE module, is it possibe to load balance the servers which are connected to the port which is configured as DMZ?
Thanksdoes not matter where the servers are connected.
However, be aware that the flows from client to server needs to go through the loadbalancer BUT also the flows server to client.
So, you should be careful where you attach the ACE module.
The easier would be to attach to the DMZ as well between the FW and the servers.
Gilles. -
ACE load balancing servers on different subnets...
Hello,
I have the following issue.... need to load balance traffic between two servers already working in two different subnets (vlans), at this point is highly desirable to avoid changing IP addresses. Is it possible to accomplish this goal using ACE? routed or bridged mode? is it strictly necessary to have all servers belonging to a serverfarm in the same subnet?
Thanks in advanced for your support.Hi,
You can do this, but you have to use client-NAT (Source-NAT) to force the return traffic to pass back through the ACE. You also then need static routes in the ACE context to point at each server. PBR is an alternative approach but I have not implemented that in a live network. The important thing is that the ACE sees both sides of the conversation.
The following extract from a configuration shows the basic principle:
rserver host master
ip address 10.199.95.2
inservice
rserver host slave
ip address 10.199.38.68
inservice
serverfarm host FARM-web2-Master
description Serverfarm Master
probe PROBE-web2
rserver master
inservice
serverfarm host FARM-web2-Slave
description Serverfarm Slave
probe PROBE-web2
rserver slave
inservice
class-map match-any L4VIPCLASS
2 match virtual-address 10.199.80.12 tcp eq www
3 match virtual-address 10.199.80.12 tcp eq https
policy-map type management first-match REMOTE-MGMT-ALLOW-POLICY
class REMOTE-ACCESS
permit
policy-map type loadbalance first-match LB-POLICY
class class-default
serverfarm FARM-web2-Master backup FARM-web2-Slave
policy-map multi-match L4POLICY
class L4VIPCLASS
loadbalance vip inservice
loadbalance policy LB-POLICY
loadbalance vip icmp-reply active
loadbalance vip advertise
nat dynamic 1 vlan 384
service-policy input L4POLICY
interface vlan 383
description ACE-web2-Clientside
ip address 10.199.80.13 255.255.255.248
alias 10.199.80.12 255.255.255.248
peer ip address 10.199.80.14 255.255.255.248
access-group input ACL-IN
access-group output PERMIT-ALL
no shutdown
interface vlan 384
description ACE-web2-Serverside
ip address 10.199.80.18 255.255.255.240
alias 10.199.80.17 255.255.255.240
peer ip address 10.199.80.19 255.255.255.240
access-group input PERMIT-ALL
access-group output PERMIT-ALL
nat-pool 1 10.199.80.20 10.199.80.20 netmask 255.255.255.240 pat
no shutdown
ip route 0.0.0.0 0.0.0.0 10.199.80.9
ip route 10.199.95.2 255.255.255.255 10.199.80.21
ip route 10.199.38.68 255.255.255.255 10.199.80.21
HTH
Cathy -
How to install licenses on 2 RDSH servers behind F5 load balancer
I want to setup 2 separate RDSH servers behind a F5 load balancer. The load balancer is there to spread out the compute load between 2 VM servers as the application the users are using are somewhat "heavy" in nature. I have 10 users
who will potentially need access all at the same time. How do I install the 10 licenses? Do I install 5 on each server, or do I install all 10 on only one of the servers?Hi,
You would install all 10 licenses on your RD Licensing server and point your 2 RDSH servers to that. You may installing RD Licensing on whichever server you want, for example, on your RD Connection Broker, or a DC, or on one of the 2 RDSH servers,
etc.
-TP -
We're currently investigating a hardware refresh of our production landscape and we've come across a bit of a stumbling block. For the record, we're not particularly big, currently running ERP 2005 with a database instance and the central instance on dual quad-core x64 1.83GHz processors with 16GB RAM each and two application servers on four quad-core x64 pre-Core-architecture processors with 8GB RAM each. It's all hooked together on a gigabit Ethernet switch (two gigabit connections per server using teaming) and all storage is internal to each server except for the database instance which has an external SCSI RAID array.
We're now upsizing and are finding ourselves once again on the very limits of what the x86/x64 systems available to us can offer, except this time, we're not sure it's enough. We're investigating blade servers as a potential way to move forward but the documentation of how a "clustered blade" server works is sketchy at best. Itanium, for us, doesn't really hold the answer; sure you can fit 128 processors into the same server but we don't have £1m to spend!
So, my questions are:
What actually is a clustered blade server?
How does it work? Do I assign physical blades to a logical server and they all work together as one much faster server, or is it just for failover purposes?
Is it still possible to use SAP's recommendations about keeping the operating system, SAP executables, the database, the database log file and the swap space (etc. etc.) on physically seperate drives if we move to Fibre Channel based storage, or is that no longer something to worry about, does it even matter any more?
Do SAP have any recommendations with regards clustered blade servers?
Has anyone ever had experience of using clustered blade servers to run ERP 2005? Anything I should know?
The impression I get of blade servers is that they are to servers what RAID is to hard disk drives, but I'd just like a bit of advice from anyone who can give it before I start spending money!
Many thanks,
Rob Moss
Mark Two
Bolton, UKYou can export a VM with snapshots and import those to a later version.
If your snapshots were taken while the VM was running, then the running VM state file needs to be deleted. (the .bin / .vsv) as the running memory state is never supported when upgrading.
Now, the other issue. 2012 R2 cannot import a VM from 2008 R2. Only 2012 can import any of the 2008 releases, and the 2012 R2 release. (yes, there was a fundamental change made and 2012 was the cross-over release).
The way to handle this is:
1) try copying the entire VM folder (without exporting) and import to 2012 R2 (test this please).
2) Use 2012 to Import the export from 2008 R2, then upgrade to 2012 R2.
Brian Ehlert
http://ITProctology.blogspot.com
Learn. Apply. Repeat. -
Load-balancing using ServerIrons or NetApp Netcaches
Dear all,
From a cursory search, this one has been asked loads of times, but I can't find
an answer....
We're adding a Weblogic cluster into a resilient environment which has Netcache
boxes doing reverse proxy and content caching, and Foundry ServerIrons doing the
load-balancing. We could add in a pair of Apache servers load-balanced by the
serverIrons and a pair of weblogic boxes in a cluster. However, this is not only
a bit of overkill, but also adds quite a bit of latency to requests. We also
already have the Netcache boxes. So, we want to get rid of Apache, and use a
proposed 3 tier environment:
Netcache
|
| (possibly via a serverIron)
v
Weblogic Cluster
|
|
v
Oracle
Will this work? Does anyone have any experience extracting the session ID on
a serverIron (or even on a netcache itself)? Has anyone found a way of doing
session failover using a serverIron?
Words of wisdom are needed for a flagging technical consultant...
Thanks
Simon Redding
Technical Specialist
Environment Agency
Good day Simon,
We have the same setup and have the same questions. Did you find how to implement this?
Any help would be great!
Cheers -
Advantages of using a webserver inbetween a load balancer and application servers
I am building out a new weblogic domain.
I am wondering which one of these configuration to go with:
1. Load balancer > weblogic servers
2. Load balancer > web server > weblogic servers
Could someone tell me what are the specific advantages of having web servers inbetween a load balancer and application servers (besides caching static data content and acting as a proxy)?
Thanks in advance
SriniOther than hosting the static content, nothing much really. We have our load balancer go straight to WL for applications without static content and route to web server if there is static content. Easy enough to do it both ways, best of both worlds.
-
Cisco CSM: Duplication of udp packets possible instead of load balancing?
Hi all,
Does anybody know if it's possible to use the csm (WS-X6066-SLB-APC, OS 4.3.1) to duplicate udp packets to several real servers instead of balancing them.
In our special case we want to test duplicating snmp traps to several network management systems whereas on the snmp clients only one target address (the vserver address) is configured.
Many thanks in advance,
ThorstenHi Thorsten,
I'm afraid this is not possible. With the CSM you can only load-balance.
Regards
Daniel -
Using CSM to load-balance two sites
Hi there,
I currently use CSS11500's at two of my sites and I'm able to use source-groups to achieve site load-balancing behind a single VIP. So basically I have a VIP that has servers in both the local site and remote site. Is something like this possible with the CSM? I suppose there's the nat server or nat client commands, but I'd like to be able to maintain original client IP address if possible, or at least maintain the original client IP for connections that stay local to the site.
Thanks,
BrandonHello Brandon-
It is not directly possible to pick and choose what servers are natted on the CSM like the CSS and ACE can do.
In the CSM, you configure nat under the serverfarm specifically.
Ex.
serverfarm Client_Nat_Example
nat server
nat client REMOTENAT
real 10.10.10.1
inservice
natpool REMOTENAT 172.16.35.5 172.16.35.5 netmask 255.255.255.0
If you were to devide up the traffic prior to hitting a serverfarm (maybe use a policy that matches specific subnets for your clients), then you could nat to only certain servers.
Ex.
access-list 2 permit 5.5.0.0 0.0.255.255
serverfarm Client-Nat-Example
nat server
nat client REMOTENAT
real 10.10.10.1
inservice
serverfarm No_Nat
nat server
no nat client
real 20.20.20.1
inservice
natpool REMOTENAT 172.16.35.5 172.16.35.5 netmask 255.255.255.0
policy client_remote
serverfarm Client_Nat_Example
client-group 2
vserver HTTP
virtual 172.16.35.7 tcp www
slb-policy client_remote
serverfarm No_Nat
persistent rebalance
inservice
With this config, the CSM checks global access list 2, anything that matches a source of 5.5.x.x subnet would go to the serverfarm with the remote servers. Anything that does not match 5.5.x.x would use the default serverfarm under the vip (No_Nat serverfarm). This is not optimal, but there is no parity between CSM and CSS when it comes to per-server NAT. -
Load balancing across multiple application servers not working with JCo RFC
We have a problem where inbound messages to the Mapping Runtime engine (ABAP -> J2EE) are not load balanced over application servers. However, load balancing does take place across server nodes within one application server.
Our system comprises of the following:
Central Instance (2 X server nodes)
Database Instance
2 X Dialog Instances (with 2 X server nodes each)
The 1st application server that starts is usually the one that is used for inbound messaging.
We have looked at the sap gateway configuration and have tried various options without much luck:
i.e.: local gateways vs. one central gateway, load balancing type by changing parameter gw/reg_lb_level, see: http://help.sap.com/saphelp_nw70/helpdata/EN/bb/9f12f24b9b11d189750000e8322d00/frameset.htm
Here are our release levels:
SAP_ABA 700 0012 SAPKA70012
SAP_BASIS 700 0012 SAPKB70012
PI_BASIS 2005_1_700 0012 SAPKIPYJ7C
ST-PI 2005_1_700 0005 SAPKITLQI5
SAP_BW 700 0013 SAPKW70013
ST-A/PI 01J_BCO700 0000 -
Any help would be greatly appreciated.
Many thanksTim
Did you follow the guide here:
How to Scale Up SAP Exchange Infrastructure 3.0
Learn what the most likely scaled system architecture looks like, and read about a step by step procedure to install additional dialog instances. The guide also walks you through additional configuration steps and the application of Support Package Stacks.
https://www.sdn.sap.com/irj/sdn/go/portal/prtroot/docs/library/uuid/c3d9d710-0d01-0010-7486-9a51ab92b927
We followed this guide for XI3.0 and PI7.0 and works successfully! -
Using ACE for proxy server load balancing
Hello groups,
I wanted to know your experiences of using ACE for proxy server load balancing.
I want to load balance to a pool of proxy servers. Note: load-balancing should be based on the HTTP URL (i can't use source or dest. ip address) so that
a certain domain always gets "cached/forwarded" to the same proxy server. I don't really want to put matching
criteria in the configuration (such as /a* to S1, /b* to S2, /c* to S3,etc..), but have this hash calculated automatically.
Can the ACE compute its own hash based on the number of "online" proxy servers ? ie. when 4 servers are online, distribute domains between 1,2,3,4 evenly.
Should server 4 fail, recalculate hash so that the load of S4 gets distributed across the other 3 evenly. Also load-balancing domains of S1 ,S2 and S3 should not change if S4 fails.....
regards,
GeertThis is done with the following predictor command:
Scimitar1/Admin# conf t
Enter configuration commands, one per line. End with CNTL/Z.
Scimitar1/Admin(config)# serverfarm Proxy
Scimitar1/Admin(config-sfarm-host)# predictor hash ?
address Configure 'hash address' Predictor algorithms
content Configure 'hash http content' Predictor algorithms
cookie Configure 'hash cookie' Predictor algorithms
header Configure 'hash header' Predictor algorithm
layer4-payload Configure 'hash layer4-payload' Predictor algorithms
url Configure 'hash url' Predictor algorithm
Scimitar1/Admin(config-sfarm-host)# predictor hash url
It does hash the url and the result takes into account the number of active proxies dynamically.
This command has been designed for this kind of scenario that you describe.
Gilles. -
Error using load balancer in ebusiness suite R12
Hi
Has any one used Cisco 11503 load balancer in their ebusiness implementation
we have upgraded a customer instance from 11i10cu2 to 12.0.6. we have configured the R12 instance for load balancer as per metalink note 380489.1
when we access the ebusiness suite, we hit the issue as mentioned below:
You cannot complete this task because one of the following events caused a loss of page data. Possible Causes:
You have left your login session idle past the timeout period. A system failure has occurred. The application server is incorrectly configured and does not send a session cookie to the client browser. If you were testing in JDeveloper: JDeveloper OC4J process did not fully shut down before restarting the application. You closed one of the Internet Explorer browser windows while the request is being processed in another Internet Explorer window. Closing an Internet Explorer window causes OC4J to expire a user session. OC4J XML files in your JDeveloper user home system directory have been modified or corrupted.
as per many metalink notes, this may occur due to load balancer ..example note : 755825.1
we have then removed load balancer setting from the applications context file (xml file) and issue doesnt occur.
so issue seems to be with load balancer setting, however we couldnt find any doc which mentions setting for Cisco 11503 load balancer
we saw notes for Bigip and cisco ACE load balancer in metalink 601694.1
Customer is also unable to help here .. as to what setting needs to be changed
Can someone kindly adviseHave you opened a case with Cisco to see if they can help ? Has persistence been enabled on the load balancer ? Is there some kind of timeout enabled on the balancer ? I do not know much about load balancers, but the settings should be somewhat similar across all of them. See if these docs help
601694.1 - How To Check Session Persistence On BigIP F5 And Cisco Ace Load Balancer Appliances
390173.1 - How to prevent Self-Service session expiry when Using Radware's APSolute Insite Software Loadbalancing Software
HTH
Srini -
Hi
Two node Exchnage 2010 DAG. All server roles on the same boxes.
CAS high availability using Cisco load balancer.
We have some applications they are relaying using Exchange 2010 Hub. They are configured using the vip of the load balancer.
The problem is, that they are unable to relay to external recipients, internal is no problem. Using the Hub directly works fine.
What could be the problem?
Regards
PeterFor those who still monitor this thread,
The issue here is that the HLB is not configured to Use Source IP. In the Netscaler world, this is configured on a device or load balancer level and is referred to as USIP. (Use Source IP) If Source IP is not configured, the HLB will pass
the traffic to Exchange using the HLB's interface. You can configure this IP as an allowed IP address on your relay connector, but this is a big security risk as previously stated because all traffic that is routed through the HLB has rights to relay.
Concerning the network guy in PeterN22's post, open connections can be a problem and can cause port saturation if you are using an (*) as a wildcard on your RPC load balancing service. I have had much better luck, across all my load balanced deployments
(Citrix, Kemp, Cisco, etc.), when I use static port assignments on all load balanced services. For example:
SMTP - 25
RPC - 59532
OAB - 59533
HTTPS - 443
POP - 110
etc.
Exchange 2013 load balancing is now stateless and doesn't rely on Source IP, but this same issue with SMTP will occur if Source IP is not used. I know this is a recap of some of the other posts, but hopefully the additional information is helpful for
someone who may come across this post.
Maybe you are looking for
-
My husband and I both have the same user name and password. When we downloaded find my phone both devices show the location of my phone. How do we get my husband's phone to show up on one of the devices? Have iphone 5s, IOS 7.1.1,
-
How Fowrarding Agent get Determined in Delivery?
Hi Gurus, I have a delivery which forwarding agent is different from Forwarding agent showed in Sales Order. For example, in Sales Order partner function I have Mr. A as forwarding agent. But, I got forwarding agent as Mr B when I create delivery. I
-
All: I have a SWF with a keyListener that I am using to toggle the visibility of a movie clip. This works great when I play the SWF in the FlashPlayer.exe. When the SWF is placed into a PDF, the mouse events all work great, but the keyListener no lon
-
Java error in Oracle Help Demo
Hi, I'm trying to get the Oracle help demo to work on a weblogic server (version 10.2.3) but I get a Java error when when I attempt to navigate to the test page at http://server:port/ohw-rcf-demo I've checked the dependencies for the thin demo and th
-
Output of select query in a single line
hi, I want to know how to get the each row in a table to be printed in a single line.. Each row in the table will be of 1500 characters length.. Thanks