Re: NAT Solution
- From: tweety <andy.mas@xxxxxxxxxxxxxx>
- Date: Sat, 18 Apr 2009 05:26:45 -0700 (PDT)
On Apr 14, 2:32 am, "Thrill5" <nos...@xxxxxxxxxxxxx> wrote:
But what is you are trying to do? Why do you need to route traffic based on
source address? There is more than one way to do anything and the method
you have suggested is not workable. If you provide more information someone
can come up with a better solution. For example, why not send the traffic
directly to the correct destination using GSLB or if this is an HTTP
application you can write a CGI to issue a redirect to the correct
destination.
<joespoolh...@xxxxxxxxx> wrote in message
news:ff9c6000-e1ec-435f-bf45-ee9cab07140e@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
The updates will be automatically generated, based on metrics
determined by a daemon. With the Cisco ACE module, you can feed it
configuration updates via XML. There's got to be a way...
On Apr 10, 7:09 pm, "Thrill5" <nos...@xxxxxxxxxxxxx> wrote:
I think you need to come up with a new solution because I don't know of
any
device that would be able to do this. What is it that you are trying to
accomplish? This is so wrong on so many levels... How would you even
manage a list of 50 to 100 thousand source addresses?
<joespoolh...@xxxxxxxxx> wrote in message
news:176d5ce6-6abd-4179-93bd-c1ce6741cc27@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
We're needing to implement a solution whereby we can reroute traffic
based on source address to a different resource. Basically, the
default behavior would let the packet route to the normal destination,
but anyone configured in a list would be shunted off to an alternate
resource.
We could do this via layer 3 or layer 4 translation of some sort, or
even a set-next-hop sort of arrangement. I'm trying to stay away from
source-based routing, because we're talking about approximately
400Mbps worth of traffic here, so I want it to be as resource-friendly
as possible. We've got some fairly beefy hardware at our disposal
(Cat6500 w/SUP720,PFC3,MSFC3) so I'm wondering what can be leveraged.
The list of sources will likely be around 50,000-100,000 entries long
and updated by an external source. I looked at the Cisco ACE module,
but it can't do it via traditional NAT processes due to the logic flow
and it's route-map features would be limited to 16,000 entries.
At this point, I'd be willing to use something Cisco or non-Cisco to
accomplish this task. Are there any recommendations?- Hide quoted text -
- Show quoted text -- Hide quoted text -
- Show quoted text -
define an access list capturing the source address's then do a route
map setting next hop to the new route ?
.
- References:
- NAT Solution
- From: joespoolhall
- Re: NAT Solution
- From: Thrill5
- Re: NAT Solution
- From: joespoolhall
- Re: NAT Solution
- From: Thrill5
- NAT Solution
- Prev by Date: Re: spanning tree & ip arp inspection c2821+c3560+c2960
- Next by Date: Re: site-2-site VPN
- Previous by thread: Re: NAT Solution
- Next by thread: Quad DSL
- Index(es):
Relevant Pages
|
