«

»

Aug 14

Cisco CSS – Source Group vs Destination Group

Categories:

Cisco CSS, Load Balancer

by admin

ciscocss

The Cisco CSS offers 2 address translation methods (NAT); Source Group and Destination Group.

Source Group

When a connection is initiated outbound through the Cisco CSS (from any of the group services) the source IP is translated to the groups VIP address. Source group servers are defined using the add service [service name] command.

Example : When SERVER-A initiates a connection outbound through the CSS, traffic will be source NAT`d behind address 10.1.1.100.

group SOURCE-GROUP  
  vip address 10.1.1.100  
  add service SERVER-A  
  add service SERVER-B  
  active

css_source_group

Destination Group

When connection is initiated to the groups defined VIP, traffic distributed to any of the servers that are configured within the group is proxied behind the VIP. Destination groups are typically used when internal load balancing is required. Destination group servers are defined using the add destination service [service name] command. It’s also known as Soure Nat (SNAT).

Example : When the client initiates a connection to group VIP (10.1.1.100) (that is destined for either SERVER-A or SERVER-B) traffic is proxied behind the subsequent VIP (10.1.1.100). Return traffic is then routed back through the CSS and balanced as per the configured content rule.

group DEST-GROUP  
  vip address 10.1.1.100  
  add destination service SERVER-A  
  add destination service SERVER-B  
  active

css_destination_group

Follow me!

This post has no tag

Leave a Reply

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>