Tuesday, September 2, 2014

Basic Alteon setup

Time to actually test the lab.

Click here for previous post to see the lab setup.



Here is a basic Alteon setup with very basic server loadbalancing.

The VIP is 10.136.85.10 and the Source NAT, or proxy ip in Alteon terminology is 10.136.85.200. We need the SNAT, as otherwise the Alteon will reply directly to the client. We need the reply traffic to pass through the Alteon to get it translated back to VIP from the real IP address of the selected server.

Notice that that we have a default GW for the management interface, and a different gateway for the data path, which is the traffic from the client and to the servers.

/c/sys/mmgmt
        dhcp disabled
        addr 10.136.1.100
        mask 255.255.255.0
        broad 10.136.1.255
        gw 10.136.1.254
        addr6 fc00:1:0:0:0:0:0:1
        prefix6 64
        gw6 fc00:1:0:0:0:0:0:254
        ena
/* LB1
/c/sys
        hprompt ena
/c/sys/ssnmp
        name "LB1"
/c/sys/access/sshd/ena
/c/sys/access/sshd/on
/c/l3/if 1
        ena
        ipver v4
        addr 10.136.85.100
        mask 255.255.255.0
        broad 10.136.85.255
/c/l3/if 2
        ena
        ipver v6
        addr fc00:85:0:0:0:0:0:100
        mask 64
/c/l3/gw 1
        ena
        ipver v4
        addr 10.136.85.254
/c/l3/gw 2
        ena
        ipver v6
        addr fc00:85:0:0:0:0:0:254
/c/slb
        on
/c/slb/real 1
        ena
        ipver v4
        rip 10.136.85.1
/c/slb/real 2
        ena
        ipver v4
        rip 10.136.85.2
/c/slb/real 3
        ena
        ipver v4
        rip 10.136.85.3
/c/slb/group 10
        ipver v4
        add 1
        add 2
        add 3
/c/slb/port 1
        client ena
        server ena
        proxy ena
/c/slb/virt 10
        ena
        ipver v4
        vip 10.136.85.10
/c/slb/virt 10/service 80 http
        group 10
        rport 80
/c/slb/virt 10/service 80 http/pip
        mode address
        addr v4 10.136.85.200 255.255.255.255 persist disable
/c/slb/virt 10/service 443 https
        group 10
        rport 443