Cisco ACE config for internal DNS load balancing

michoski michoski at
Fri Mar 9 19:08:26 UTC 2012

On 3/9/12 8:39 AM, "Phil Mayers" <p.mayers at> wrote:

> On 09/03/12 16:23, Matthew Huff wrote:
>> Anyone have any suggestions/best practices/config examples for DNS load
>> balancing for internal use on CISCO ACE blades?
>> I¹ve got the standard example working, but wondered about keepalive
>> frequency, timeouts, fragments, etcŠ
>> Anyone got any examples they use that they could share?
> We do transparent LB; the servers all have the service VIP as a /32 on
> their loopback interface. The packet flow is:
> Req: client -> ace -> dns server
> Rsp: dns server -> client
> This has the advantage that the DNS servers don't have to sit "behind"
> the ACE.

+1 -- Some times called "DSR" or "Direct Server Return", I consider it the
only way to configure sites/services of any significant size.

All his life he has looked away... to the horizon, to the sky,
to the future.  Never his mind on where he was, on what he was doing.
        -- Yoda

More information about the bind-users mailing list