Command Line Interface Reference Guide > The SLB Configuration Menu > /cfg/slb/gslb Global SLB Configuration
/cfg/slb/gslb
Global SLB Configuration
Global Server Load Balancing (GSLB) at any given site performs periodic SLB health checks to determine the health and response time of the remote real server corresponding to the virtual server at the remote site. GSLB uses the health and response time to select the server in the GSLB selection engine. In addition, GSLB sends the health and response time together with the local session and CPU utilization information that are collectively known as remote site updates.
Alteon performs this periodically on every remote site using the Distributed Site State Protocol (DSSP). DSSP is a proprietary protocol that resides above TCP. For more information on GSLB and DSSP, see the Alteon Command Line Interface Application Guide.
 
[Global SLB Menu]
site - Remote Site Menu
network - Network Preference Menu
rule - Rule Menu
inbound - Inbound LLB Creation Wizard
clntprox - Client Proximity Menu
     dnsresvip - Displays the DNS Responder VIP Menu
     dnssec - DNSSEC Menu
     dnsproxy – DNS Proxy Menu
     dnssoa - DNS SOA Resource Record Configuration Menu
dnscaa - DNS CAA Resource Record Configuration Menu
     nsgroup - DNS Nameserver Group Menu
     version - Set DSSP version 1 or 2 or 3 or 4 or 5 to send out remote site
updates
     port - Set TCP port number for DSSPv2, DSSPv3, DSSPv4 and DSSPv5
remote site updates
     sinter - Set interval in seconds for remote site updates
sesscap - Set sessions utilization capacity threshold (DSSPv2, DSSPv3, DSSPv4 and DSSPv5)
cpucap - Set CPU utilization capacity threshold (DSSPv2, DSSPv3, DSSPv4
and DSSPv5)
smask - Set source IP subnet mask for DNS persistence cache
sprefix - Set source IPv6 prefix for DNS persistence cache
timeout - Set timeout in minutes for DNS persistence cache
mincon - Set sessions available capacity threshold
nodomain - Set DNS response code when sub-domain not matched
dns - Enable/disable authoritative DNS direct based GSLB
hostlk - Enable/disable virtual service hostname matching
redirect - Enable/disable HTTP/HTTPS redirection based GSLB
http - Enable/disable HTTP redirect based GSLB
usern - Enable/disable HTTP redirect to remote real server name
norem - Enable/disable no remote real SLB
encrypt - Enable/disable encrypting remote site updates
dsync - Enable/disable sync of DNS persistence cache with remote sites
downrsp - Set response when service down
dssphc - Enable/disable DSSP health check
on - Globally turn Global SLB ON
off - Globally turn Global SLB OFF
cur - Display current Global SLB configuration
 
Global SLB Menu Options (/cfg/slb/gslb) 
Command Syntax and Usage
site <remote site (1-64)>
 
Displays the Remote Site menu. To view this menu, see /cfg/slb/gslb/site <site number> Remote Site Menu.
Default: enable
network <network (1-128)>
 
Displays the Network menu. To view this menu, see /cfg/slb/gslb/network <network number> Network Menu.
Default: enable
rule <rule (1-128)>
 
Displays the Rule menu. To view this menu, see /cfg/slb/gslb/rule Rule Menu.
Default: enable
inbound
 
Runs the inbound LLB wizard.
Note: The wizard allows creation of new rules using existing VIPs and not creation of new VIP or WAN links.
The inbound LLB wizard will ask for all parameters required to create a new inbound rule, as follows:
Enter the Inbound LLB Rule number (1-2048):
Note: If you enter a rule number that already exists, you will be asked if you want to delete the rule.
Do you want to enter the Inbound LLB wizard? [y/n]:
Enter description:
Enter domain name:

Local Service Setting
Enter local service port (10-65534) or name:
Application usage: http|https|ssl|dns|rtsp|wts|sip|basic-slb
Enter application:
Enter "tcp"|"udp"|"stateless" [t/u/s]:
Enter local group ID:

Link Selection
Select a Link by Proximity?[y|n]:
Select additional metric for the link selection, either:
leastconns|roundrobin|response|geographical|network|random|availability|qos|minmisses|hash|persistence|local|always|remote|phash|none
Enter metric [leastconns]:

Links
Enter existing NAT ID (Virt ID): NATofISP1
qNAT (VIP) ID NATofISP1 is defined with IP 100.2.2.2
NAT (VIP) ID NATofISP1 is defined with WAN Link abc, 1.1.1.1
 
Enter existing WAN Link ID for this NAT: abc
WAN Link abc is defined with IP Address 1.1.1.1

Do you want to add more links to this Inbound LLB Rule? [y|n]:

Enable this Inbound LLB rule? [y|n]:
The Rule setting is:
For example:
Inbound LLB Rule 123, Enabled
Description: My a.com inbound rule,
Domain: www.a.com.

Local Service 53 (DNS, TCP),
Local Server Group MyDNSGroup.

Link Selection by Least Connection
Links:
NAT (VIP) ISP1, IP: 200.11.11.11 with WAN Link WAN1, IP: 200.1.1.1
NAT (VIP) ISP2, IP: 100.11.11.11 with WAN Link WAN2, IP: 100.1.1.1
NAT (VIP) ISP3, IP: 50.11.11.11 no WAN Link

Do you want to submit this rule? [y|n]:
clntprox
 
Displays the Client Proximity menu. To view this menu, see /cfg/slb/gslb/clntprox Global SLB Client Proximity Menu.
dnsresvip
 
Displays the DNS Responder VIP menu. To view this menu, see /cfg/slb/gslb/dnsresvip GSLB DNS Responder VIP Menu.
Default: enable
dnssec
 
Displays the DNSSEC menu. To view this menu, see /cfg/slb/gslb/dnssec GSLB DNSSEC Menu.
dnsproxy
 
Displays the DNS Proxy menu. To view this menu, see /cfg/slb/gslb/dnsproxy DNS Proxy Menu.
dnssoa
 
Displays the DNS SOA Configuration menu. To view this menu, see /cfg/slb/gslb/dnssoa DNS SOA Configuration Menu.
dnscaa
 
Displays the DNS CAA Configuration menu. To view this menu, see /cfg/slb/gslb/dnscaa DNS CAA Configuration Menu.
nsgroup
 
Displays the DNS Nameserver Group menu. To view this menu, see /cfg/slb/gslb/nsgroup DNS Nameserver Group Menu.
version <DSSP version 1, 2, 3, 4, or 5>
 
Sets the Distributed Site State Protocol (DSSP) version that is used to send out the remote site updates.
port <TCP port number>
 
Sets the TCP port number for remote site updates for GSLB.
Default: 80
sinter <remote site updates interval in seconds, 10-7200>
 
Sets the time interval in seconds for remote site updates.
Values: 10 – 7200
sesscap <Session utilization capacity threshold (1-100)>
 
Sets the threshold (percentage) for session utilization capacity.
Default: 90
cpucap <CPU utilization capacity threshold (1-100)>
 
Sets the threshold (percentage) for the CPU utilization capacity.
Default: 90
smask <IP subnet mask (eg, 255.255.255.0)>
 
Sets the source IP netmask for DNS persistence cache.
Default: 255.255.255.0
sprefix <set IP6 prefix len (eg, 64)>
 
Sets the IPv6 prefix length for DNS persistence cache.
Values: 1 – 128
Default: 64
timeout <timeout in minutes, 1-1440>
 
Sets the timeout in minutes for DNS persistence cache.
Values: 1 – 1440
mincon <available sessions threshold, 0-65535>
 
Defines the capacity threshold for the sessions available on the real server for GSLB.
Values: 1 – 65535
nodomain <nxdomain|refuse>
 
Sets the DNS response code when the Alteon is authoritative server for the domain, but not the sub-domain.
When domain is unknown to Alteon, the response code is refuse.
Values:
* refuse (default)
* nxdomain
dns <disable|enable>
 
Enables or disables responses to DNS queries.
When enabled, Alteon always responds to DNS queries by providing a local virtual server IP address, as long as the virtual server IP address has healthy real servers with an aggregate number of available connections equal to the total from each server’s configured maxcons value, minus the server’s current number of connections.
When the real servers for the local virtual server IP addresses are unavailable or saturated, Alteon responds to DNS requests using normal GSLB rules.
If inbound link load balancing is enabled at /cfg/slb/linklb, Alteon ignores this dns command and does not perform GSLB.
If inbound link load balancing is disabled, and this dns command is enabled, Alteon performs load balancing, and selects a local or remote VIP address, according to the configured GSLB metrics.
If both link load balancing and this dns command are enabled, Alteon attempts to use link load balancing. If it fails, it attempts to use the GSLB DNS.
If both link load balancing and this dns command are disabled, Alteon does not respond to DNS queries.
Default: enable
hostlk <disable|enable>
 
Enables or disables lookups based on host or domain name in a GSLB configuration.
Values:
*disable — Only the domain name will be used to match.
*enable — The hostname specified in the virtual service configuration, in addition to the domain name, is used to resolve the IP address for the domain.
Default: enable
redirect <disable|enable>
 
Enables or disables HTTP or HTTPS redirection-based GSLB.
http <disable|enable>
 
Enables or disables HTTP redirects to peer sites by this Alteon.
Values:
*disable — Alteon does not perform HTTP redirects, but instead drops requests for new connections and causes the client’s browser to eventually issue a new DNS request.
*enable — Alteon redirects client requests to peer sites if its own real servers fail or have reached their maximum connection limits.
Default: enable
usern <disable|enable>
 
Enables or disables an HTTP redirect to a real server name. When a site redirects a client to another site using an HTTP redirect, the client is redirected to the new site’s IP address.
Values:
*disable — The client is not redirected to a real server name.
*enable — The client is redirected to the domain name specified by the remote real server name plus the virtual server domain name.
Default: disable
norem <disable|enable>
 
Enables or disables no-remote real server load balancing.
If enabled, Alteon does not perform remote real server load balancing for non-HTTP protocols. For HTTP protocols, if you want to perform no-remote-real-server load balancing, you must disable the http parameter (see in this table).
encrypt <disable|enable>
 
Enables or disables encrypting of DSSP updates.
If disabled, Alteon does not encrypt the DSSP messages going out of Alteon. This option allows the GSLB feature to work with older versions of the Web OS that do not encrypt DSSP messages.
Default: enable
dsync <disable|enable>
 
Enables or disables synchronization of the DNS persistence cache with remote sites using the DSSP protocol. Synchronization of the persistence cache between Alteons located in different data centers ensures DNS persistence, even when selecting a data center based on the load metric, not only the hash metric.
Default: enable
downrsp <srvfail|norsp>
 
Specifies how Alteon behaves when a DNS client requests a server or service that is not active on Alteon.
*srvfail — Alteon responds to the client with the relevant DNS error code.
*norsp — Alteon does not respond to the client to avoid negative caching.
Default: srvfail
on
 
Activates GSLB for this Alteon. This option can be performed only after the optional GSLB software is activated (for more information, see /oper/swkey Activating Software).
off
 
Turns GSLB off for this Alteon. Any active remote sites still perform GSLB services with each other, but do not hand off requests to this Alteon.
Default: off
cur
 
Displays the current GSLB configuration.