DX: not load balancing traffic to ssl vpn devices



  • Hi Guys,

    I have 3 juniper ssl vpn devices currently being clustered on a DX. Problem is that the DX seems to be sending the load to only one box, i have configured the algorithm to roundrobin with sticky clientip.  I also tried using the SLB functionality but to no avail. Any idea guys how this would work?

    Thanks,
    ALex



  • Alex,

    On the Juniper site you can find an
    Application Note "
    Next Generation Extended Enterprise
    IVE, Routing, Firewall, IDP, and Application Acceleration"
    Part Number: 350069-001

    Here you can find a setup with a dx that is loadbalancing an ssl

    If you don’t find the pdf I can send it to you

    Kind Regards
    Tim



  • Hi Stimpy,

    LIsten IP : 192.168.1.254:443
    target hosts: 192.168.1.1:443 weight 0 conn 1
                      192.168.1.2:443 weight 0 conn 1
                      192.168.1.3:443 weight 0 conn 1
    Algorithm: roundrobin
                  sticky enabled
                  clientip
                  session/ip 120mins

    Will these help?

    Thanks,
    Alex



  • It should work like that, cvan we have more information about your roundrobin setup?


 

33
Online

38.4k
Users

12.7k
Topics

44.5k
Posts