JCMATTOS_41723
Oct 18, 2007Nimbostratus
Loadbalancing Two Environments Internal/External?
Hello all, we just got a pair of new 8400's 9.x and we are trying to consolidate our 2 CSM loadbalancing environments Internal/External on this new LTM platform. We have a total of 16 vlans and subnets on this box (4 VIPS/RIPS each external & 4 VIPS/RIPS each Internal respectively). On the external we are hanging off of several DMZ's on our FWSM and used as one gateway. On the internal we are using our core MSFC as our other gateway. The Servers are not able to initiate connections from behind the loadbalancer to talk to our DNS servers internally. I then realized that I have routes to consider, but are wondering how will I be able to route to multiple gateways (FWSM or MSFC) based on source IP or network? For example if a server initiates a connection in the Prod-External (10.1.24.100) it's gateway will always be FWSM (10.1.22.1) respective to its VIP. Not sure where to begin, hope this makes sense or if theres an easier way to accomplish this??? Please Help!
EXTERNAL:
Prod-External
VIP 10.1.22.0/23 => Gateway 10.1.22.1 (FWSM)
RIP 10.1.24.0/23
UAT-External
VIP 10.1.32.0/23 => Gateway 10.1.32.1 (FWSM)
RIP 10.1.34.0/23
QA-External
VIP 10.1.42.0/23 => Gateway 10.1.42.1 (FWSM)
RIP 10.1.44.0/23
DEV-External
VIP 10.1.52.0/23 => Gateway 10.1.52.1 (FWSM)
RIP 10.1.54.0/23
INTERNAL:
Prod-Internal
VIP 172.16.22.0/23 => Gateway 172.16.22.1 (MSFC)
RIP 172.16.24.0/23
UAT-Internal
VIP 172.16.32.0/23 => Gateway 172.16.32.1 (MSFC)
RIP 172.16.34.0/23
QA-Internal
VIP 172.16.42.0/23 => Gateway 172.16.42.1 (MSFC)
RIP 172.16.44.0/23
DEV-Internal
VIP 172.16.52.0/23 => Gateway 172.16.52.1 (MSFC)
RIP 172.16.54.0/23