Load balancing UDP application in ACE

Similar Messages

• Advantages of using a webserver inbetween a load balancer and application servers

  I am building out a new weblogic domain.
  I am wondering which one of these configuration to go with:
  1. Load balancer > weblogic servers
  2. Load balancer > web server > weblogic servers
  Could someone tell me what are the specific advantages of having web servers inbetween a load balancer and application servers (besides caching static data content and acting as a proxy)?
  Thanks in advance
  Srini

  Other than hosting the static content, nothing much really.   We have our load balancer go straight to WL for applications without static content and route to web server if there is static content.   Easy enough to do it both ways, best of both worlds.

• How to remove farm account from Application Discovery and Load Balancer Service Application

  Hello Community
      Using Sharpoint 2010 Server I think the reason
  the User Profile Synchronization would stop is because somehow the farm
  account was registered as a managed account.  So I removed the farm
  account from all services that ran under the farm account so that I could
  run Remove-SPManagedAccount or click the Remove icon in manage service accounts
  and then unregisted farm account as a managed account.
     But before I can run Remove-SPManagedAccount I need to remove it from one more
  service account that uses the farm account which is:
      "Application Discovery and Load Balanceer Service Account".
      However, nothing seems to remove it from there.
      I tried :
  "get-spserviceapplication | where {$_.TypeName -match "Application Discovery and Load Balancer Service Application"}
      and then
  "stop-spserviceinstance "dde7fbef-b068-4687-bedb-f67230efab5a"
      amongst a host of other methods so that I could ultimately
  unregister farm account as a managed account.
      But no matter what I do when I try to remove the farm account from Application Discovery
  and Load Balancer Service Application
  and then unregister the farm account as a managed account a message always says
  "Application Discovery and Load Balancer Service Application" is using the farm account
  as its service account.
      What can I do to free the farm account from Application Discovery and Load Balancer Service Application?
      Thank you
      Shabeaut

  The Farm Account is always a Managed Account and can never be "unmanaged". You don't have to set the automatic password roll.
  Trevor Seward
  Follow or contact me at...
  &nbsp&nbsp
  This post is my own opinion and does not necessarily reflect the opinion or view of Microsoft, its employees, or other MVPs.

• Load-balancing by application version

  Hi there. I have a pair of CSS-11501's that I'm using for load-balancing incoming connections for a specific software application. We have 2 versions of the software that connect to the same TCP port on the server side. Is there any way to have the CSS distinguish between the application versions so I can direct traffic to different clusters based on version, without the customer knowing?

  no way with the CSS.
  The CSS can understand http but not other applications.
  The ACE module in its next software release will be able to catch data on any application and make an action like loadbalance with it.
  Gilles.

• Server load balancing for application access using multiple servers

  1.what are the methods supported by cisco switches for load balancing
  2. I want to achive users to access 1 particular ip from different locations but phsically few servers which handle the application and data

  well some servers allow you to install routing protocols on them. you could OSPF some links together.
  or you could NLB if it is a microsoft server. this uses a heartbeat network, a virtual mac and an IP address bound to the vmac.
  you could use NIC teaming. broadcom nics on dell servers allow you to configure them for loadbalancing, failover and a few other options.
  or if the servers are mirrored using MSCS or something similar (i.e configured the same but independant) you could just load balance using DNS.
  hope this helps. jsut some ideas quickly off the top of my head

• Load balancing between application server and database

  Hi,
  is there any load balancing between the application server and the database? Consider we have a single instance of an application server that sends database queries from different clients to the database. Are the requests queued in some way at the application server, allowing to control the flow of the queries (e.g. queries from "more important" clients might be sent with a higher priority)?
  Thanks for your help!

  Hi Victor/Jim/Volker,
  Thanks a lot for all the responses..
  Just wanted to let you guys know that my installation finished successfully.
  The thing which confused me was that my Qtime, Qdate and everything else was showing correct values..
  Well, my problem I set the environmental variable PASE_TZ to the EST time zone on a SYS level using WRKENVVAR>F4>SYS and added the variable. I logged off and the sidofr logged off, but one user which should have logged off and didn't was the "SAPINST"(my installation user) which was logged in the subsystem TMKSVR00.
  Even when I had closed the SAPINST installlation program, the user doesn't log off...it just sits there until and unless u shut him out of the system using the option 4 on wrkactjob for ending the JOB(SAPINST logged in the system below the TMKSVR00 subsystem)
  So since the SAPISNT user never logged of, his environmental variables were not initilized properly, even after the changes...
  This thought came to me almost after a 6 hours of wasting my time searching for notes here and there...
  I think when u end/stop the install in SAPINST, the SAPINST user should log off the AS400 system, but I have noticed, it never does...although when u restart the installation, if u have noticed it shows you the log on for the SAPINST user in the TMKSVR screen...
  Its kind of buggy, I would say...
  I have noticed, that even when I log on to AS400 from home or from a remote PC using Emulator, it shows me logged in the subsystem and even after i have logged of, it still shows me there...
  Anyway, thanks a lot guys...for all your responses..
  Just wanted to let you know all.
  Thanks
  Abhi

• Application Discovery and Load Balancer Service Application - Load Distribution

  Hello,
  We have a four server farm with no external load balancer. All of the servers are configured as WFEs.
  Is there a console in central admin or in site settings where I can see which request goes to which server?
  Many thanks, 

  Thank you Alex.
  It has been set up this way ever since the application went live, why or who did this I do not know. The application is mainly used as a docu-share and there are a fair bit of users (~30,000) on it now. Bulk of the users access it once a month. 
  I think it probably is time to change this design as users have started complaining about slowness. We tried putting in an external load balancer, but it made things worse.

• Load Balancing - BSP Applications

  Hi All,
  Our current system has lot of custom BSP Applications. Recently the basis/network teams have taken up load balancing activities to better manage the workload.
  We have observed after the load balancing activity came into play that our BSP calls have been failing(end in ST22 dumps) more frequently then they were happening before.
  Failure rate : % of BSP calls ending in ST22 dumps.
  Failure rate before load balancing : < 3%.
  Failure rate after load balancing : > 25%.
  There has been no code change recently.
  Dump analysis points to a new line of code each time, also point to standard SAP code most of the times.
  Does anyone know what are we doing wrong?
  Let me know in case you have more questions.
  Regards,
  Karthik

  Hi!
  In order to really use Load Balancing for BSPs you can
  1. install and use SAP Web Dispatcher (no Redirect) or
  2. use the SAP Message Server (=Redirect)
  In both cases you have to adjust your URLs to the server and port of Web Dispatcher resp. Message Server.
  What kind/types of dumps do you get?
  Regards,
  Volker

• Firewall Load Balance using bridged mode ACE

  Dear Folks,
  I 'd like to load balance 2 ASA using 3 ACE [ Inside,outside,dmz network zone]
  I 've seen sample configuration, all of them are running the ACE in the route mode, and asa are running in route mode
  Would it be possible to run the ACE in the bridge Mode, because the ip subneted problem, We don't have enough to split,,
  by the way if possible,All server that install behind ACE, what is default gateway should Server Point to [ in our case we have 2 independent firewall ] should I create the VIP for both firewall ? or should I just simply set the server's gateway to BVI interface, ?
  Please Help Thanks

  Thank you very much Gilles,
  You 're the man. ;-)
  Another question in my case I try to load balance 3 interface firewall [inside,outside,dmz] in order to make the packet return the same firewall it has passed earlier,
  What kind of hashing technique do I need to use and Do i need to use mac sticky command ???
  I tried to find some configuration sample from cisco website , but i only found with only 2 interface with ACE running source hash and destination hash in each ends,
  Thank you very much

• Load balancing and Application Server

  Hi guys,
  IHAC who have EBS + Kofax + OUCM (Oracle UCM) and needs to purchase load balancers for the installations. He is between Cisco and Radware load balancers and he says that Radware's ones have a module for Oracle Applications.
  Do yo have any idea/experience/recommendation/advice with these load balancers?
  Any help will be appreciated,
  Dani

  I'm pretty sure F5 Networks has the most comprehensive scope to support Oracle AS environments with Oracle health monitors, Advanced LB Algorythms and methods, SSL Offload and Acceleration, Web Acceleration, Sticky Persistence, URL URI rewriting and loopbacks... Please check out the following F5 and Oracle Deployment guides for complete configuration and deployment support.
  http://www.f5.com/pdf/deployment-guides/f5-oracle10g-dg.pdf
  and
  http://www.oracle.com/technology/products/ias/hi_av/BigIP.pdf

• Load Balance Reverse Poxy using ACE and HTTP Header Sticky

  Dear all,
  I have a reverse proxy that makes HTTP and HTTPS requests to an ACE.
  For implement persistence I want to configure HTTP HEADER Stickyness using the X-Forwarder-For information but I don't know:
  How to implement it ( I'l apreciate a little example about it).
  Which values I need for OFFSET and LENGHT fields.
  Can you help me please?
  Thanks a lot!!

  Hi Cesar.
  Thanks a lot for your answer but I think you misunderstand the question or I'm not explaninig very well
  I don't need to insert anything.
  The serverfarm X will be accesed by a reverse proxy. This reverse proxy already inserts the X-Forearder-From header, so the request from the reverse proxy comes with this header to the serverfarm X.
  The problem is that now, the serverfarm X sticky the client based on source IP. This is a wrong behavior becasue all the request comes form the same source (Reverse proxy) and all the load forwards to the same real IP address.
  This is because I want to change the sticky from source IP to HTTP header and looks for the X-Forwarder-For filed.
  Hop it will clarify the question!

• Load balancing between Application Servers &  adding Groups in Frontend sys

  Dear All,
  We have  one Central Instance and one Application Server in OS win2003 databae SQL Server
  i have create a usergroup  "PUBLIC"  using  : SUGR (T-Code) 
  i Have Create a Logon Group " Public" using : SMLG (T-Code) for both the instances central instance and for Application Server.
  i am not able to add   the "Message Server Name"  Or not able to configure  in the End user Systems.
  we are using SAPGui 710.  i am not able to fine "sapms.ini" files  i followed the Note : 64015
  Please guide me the Process  what are the necessary steps to follow
  Regards
  SNB

  Dear Faisal,
  Thanks for downloading the Information.
  Now i am Configuring in Production Server . Accessing those system through SNC - SAPRouter from Remote Location.
  i have created a logon Group name "public"  for both the Instances  like    "prddialog_PRD_09"    and    "prda_PRD_09
  and i have added  sapmsSID        3205/tcp    in my local  system  Services file.  
  When i am configuring  Logon Group in SAPGUI i am not able to add the Group/Server throws an error message
  error :   hostname  Unknown.
  anything need to be configured
  Regards
  SNB.

• Load balancing within the same ACE across two different contexts residing on the same vlan

  I'm working on a design that requires traffic be sent to a different context in the same ACE. The question I have is can this be done when both reside on the same VLAN. Would the traffic in this case be handled at layer 2 instead of layer 7. Would I have to create a seperate subnet in order to provide loadbalancing?
  |__________________|
  |   | vlan 5         |         |
      |                  |
      |                  |
  Context A        |
                         |
                         |
                      Context B
  Thanks, Jerilyn

  by design, two contexts on the same box in the same vlan can't communicate. You have to use an external L3 device.
  A workaround may be to use two diferent vlans and then bridge between them with a loopback cable.

• Ask the Expert: Configuration and Troubleshooting the Cisco Application Control Engine (ACE) load balancer

  With Ajay Kumar and Telmo Pereira 
  Welcome to the Cisco Support Community Ask the Expert conversation. This is an opportunity to learn and ask questions about configuration and troubleshooting the Cisco Application Control Engine (ACE) load balancer with Cisco expert Ajay Kumar and Telmo Pereira. The Cisco ACE Application Control Engine Module for Cisco Catalyst 6500 Series Switches and Cisco 7600 Series Routers is a next-generation load-balancing and application-delivery solution. A member of the Cisco family of Data Center 3.0 solutions, the module: Helps ensure business continuity by increasing application availability Improves business productivity by accelerating application and server performance Reduces data center power, space, and cooling needs through a virtualized architecture Helps lower operational costs associated with application provisioning and scaling
  Ajay Kumar  is a customer support engineer in the Cisco Technical Assistance Center in Brussels, covering content delivery network technologies including Cisco Application Control Engine, Cisco Wide Area Application Services, Cisco Content Switching Module, Cisco Content Services Switches, and others. He has been with Cisco for more than four years, working with major customers to help resolve their issues related to content products. He holds DCASI and VCP certifications. 
  Telmo Pereira is a customer support engineer in the Cisco Technical Assistance Center in Brussels, where he covers all Cisco content delivery network technologies including Cisco Application Control Engine (ACE), Cisco Wide Area Application Services (WAAS), and Digital Media Suite. He has worked with multiple customers around the globe, helping them solve interesting and often highly complex issues. Pereira has worked in the networking field for more than 7 years. He holds a computer science degree as well as multiple certifications including CCNP, DCASI, DCUCI, and VCP
  Remember to use the rating system to let Ajay know if you have received an adequate response.
  Ajay and Telmo might not be able to answer each question due to the volume expected during this event. Remember that you can continue the conversation on the Data Center sub-community discussion forum Application Networking shortly after the event.
  This event lasts through July 26, 2013. Visit this forum often to view responses to your questions and the questions of other community members.

  Hello Krzysztof,
  Another set of good/interesting questions posted. Thanks! 
  I will try to clarify your doubts.
  In the output below both resources (proxy-connections and ssl-connections rate) are configured with a min percentage of resources (column Min), while 'Max' is set to equal to the min.
  ACE/Context# show resource usage
                                                       Allocation
          Resource         Current       Peak        Min        Max       Denied
  -- outputs omitted for brevity --
    proxy-connections             0      16358      16358      16358      17872
    ssl-connections rate          0        626        626        626      23204
  Most columns are self explanatory, 'Current' is current usage, 'Peak' is the maximum value reached, and the most important counter to monitor 'Denied' represents the amount of packets denied/dropped due to exceeding the configured limits.
  On the resources themselves, Proxy-connections is simply the amount of proxied connections, in other words all connections handled at layer 7 (SSL connections are proxied, as are any connections with layer 7 load balance policies, or inspection).
  So in this particular case for the proxy-connections we see that Peak is equal to the Max allocated, and as we have denies we can conclude that you have surpassed the limits for this resource. We see there were 17872 connections dropped due to that.
  ssl-connections rate should be read in the same manner, however all values for this resource are in bytes/s, except for Denied counter, that is simply the amount of packets that were dropped due to exceeding this resource. 
  For your particular tests you have allocated a min percentage and set max equal to min, this way you make sure that this context will not use any other additional resources.
  If you had set the max to unlimited during resource allocation, ACE would be allowed to use additional resources on top of those guaranteed, if those resources were available.
  This might sound a great idea, but resource planning on ACE should be done carefully to avoid any sort of oversubscription, specially if you have business critical contexts.
  We have a good reference for ACE resource planning that contains also description of all resources (this will help to understand the output better):
  http://www.cisco.com/en/US/docs/interfaces_modules/services_modules/ace/v3.00_A2/configuration/virtualization/guide/config.html#wp1008224
  1) When a resource is utilized to its maximum limit, the ACE denies additional requests made by any context for that resource. In other words, the action is to Drop. ACE  should in theory silently drop (No RST is sent back to the client). So unless we changed something on the code, this is what you should see.
  To give more context, seeing resets with SSL connections is not necessarily synonym of drops. As it is usual to see them during normal transactions.
  For instance Microsoft servers are usually ungracefully terminating SSL connections with RESET. Also when there is renegotiation during an SSL transaction you may see RESETS, but this will pass unnoticed for end users. 
  2)  ACE will simply drop/ignore new connections when we reach the maximum amount of proxied connections for that context. Exisiting connections will continue there.
  As ACE doesn't respond back, client would simply retransmit, and if he is lucky maybe in the next attempt he will be able to establish the connection.
  To overcome the denies, you will definitely have to increase the resource allocation. This of course, assuming you are not reaching any physical limit of the box.
  As mentioned setting max as unlimited might work for you, assuming there are a lot of unused resources on the box.
  3)  If a new connection comes in with a sticky value, that matches the sticky entry of a real server, which is already in MAXCONNS state, then both the ACE module/appliance should reject the connection and that sticky entry would be removed.
  The client would at that point reestablish a new connection and ACE would associate a new sticky entry with the flow for a new RSERVER after the loadbalancing decision.
  I hope this makes things clearer! Uff...
  Regards,
  Telmo

• Load balancing across multiple application servers not working with JCo RFC

  We have a problem where inbound messages to the Mapping Runtime engine (ABAP -> J2EE) are not load balanced over application servers. However, load balancing does take place across server nodes within one application server.
  Our system comprises of the following:
  Central Instance (2 X server nodes)
  Database Instance
  2 X Dialog Instances (with 2 X server nodes each)
  The 1st application server that starts is usually the one that is used for inbound messaging.
  We have looked at the sap gateway configuration and have tried various options without much luck:
  i.e.: local gateways vs. one central gateway, load balancing type by changing parameter gw/reg_lb_level, see: http://help.sap.com/saphelp_nw70/helpdata/EN/bb/9f12f24b9b11d189750000e8322d00/frameset.htm
  Here are our release levels:
  SAP_ABA     700     0012     SAPKA70012
  SAP_BASIS     700     0012     SAPKB70012
  PI_BASIS     2005_1_700     0012     SAPKIPYJ7C
  ST-PI     2005_1_700     0005     SAPKITLQI5
  SAP_BW     700     0013     SAPKW70013
  ST-A/PI     01J_BCO700     0000          -
  Any help would be greatly appreciated.
  Many thanks

  Tim
  Did you follow the guide here:
  How to Scale Up SAP Exchange Infrastructure 3.0  
  Learn what the most likely scaled system architecture looks like, and read about a step by step procedure to install additional dialog instances. The guide also walks you through additional configuration steps and the application of Support Package Stacks.
  https://www.sdn.sap.com/irj/sdn/go/portal/prtroot/docs/library/uuid/c3d9d710-0d01-0010-7486-9a51ab92b927
  We followed this guide for XI3.0 and PI7.0 and works successfully!