[Global SLB Menu] site - Remote Site Menu network - Network Preference Menu rule - Rule Menu inbound - Inbound LLB Creation Wizard clntprox - Client Proximity Menu dnsresvip - Displays the DNS Responder VIP Menu dnssec - DNSSEC Menu dnsproxy – DNS Proxy Menu dnssoa - DNS SOA Resource Record Configuration Menu dnscaa - DNS CAA Resource Record Configuration Menu nsgroup - DNS Nameserver Group Menu version - Set DSSP version 1 or 2 or 3 or 4 or 5 to send out remote site updates port - Set TCP port number for DSSPv2, DSSPv3, DSSPv4 and DSSPv5 remote site updates sinter - Set interval in seconds for remote site updates sesscap - Set sessions utilization capacity threshold (DSSPv2, DSSPv3, DSSPv4 and DSSPv5) cpucap - Set CPU utilization capacity threshold (DSSPv2, DSSPv3, DSSPv4 and DSSPv5) smask - Set source IP subnet mask for DNS persistence cache sprefix - Set source IPv6 prefix for DNS persistence cache timeout - Set timeout in minutes for DNS persistence cache mincon - Set sessions available capacity threshold nodomain - Set DNS response code when sub-domain not matched dns - Enable/disable authoritative DNS direct based GSLB hostlk - Enable/disable virtual service hostname matching redirect - Enable/disable HTTP/HTTPS redirection based GSLB http - Enable/disable HTTP redirect based GSLB usern - Enable/disable HTTP redirect to remote real server name norem - Enable/disable no remote real SLB encrypt - Enable/disable encrypting remote site updates dsync - Enable/disable sync of DNS persistence cache with remote sites downrsp - Set response when service down dssphc - Enable/disable DSSP health check on - Globally turn Global SLB ON off - Globally turn Global SLB OFF cur - Display current Global SLB configuration |
Command Syntax and Usage | |
---|---|
site <remote site (1-64)> | |
Displays the Remote Site menu. To view this menu, see /cfg/slb/gslb/site <site number> Remote Site Menu. Default: enable | |
network <network (1-128)> | |
Displays the Network menu. To view this menu, see /cfg/slb/gslb/network <network number> Network Menu. Default: enable | |
rule <rule (1-128)> | |
Default: enable | |
inbound | |
Runs the inbound LLB wizard. Note: The wizard allows creation of new rules using existing VIPs and not creation of new VIP or WAN links. The inbound LLB wizard will ask for all parameters required to create a new inbound rule, as follows: Enter the Inbound LLB Rule number (1-2048): Note: If you enter a rule number that already exists, you will be asked if you want to delete the rule. Do you want to enter the Inbound LLB wizard? [y/n]: Enter description: Enter domain name: Local Service Setting Enter local service port (10-65534) or name: Application usage: http|https|ssl|dns|rtsp|wts|sip|basic-slb Enter application: Enter "tcp"|"udp"|"stateless" [t/u/s]: Enter local group ID: Link Selection Select a Link by Proximity?[y|n]: Select additional metric for the link selection, either: leastconns|roundrobin|response|geographical|network|random|availability|qos|minmisses|hash|persistence|local|always|remote|phash|none Enter metric [leastconns]: Links Enter existing NAT ID (Virt ID): NATofISP1 qNAT (VIP) ID NATofISP1 is defined with IP 100.2.2.2 NAT (VIP) ID NATofISP1 is defined with WAN Link abc, 1.1.1.1 | |
Enter existing WAN Link ID for this NAT: abc WAN Link abc is defined with IP Address 1.1.1.1 Do you want to add more links to this Inbound LLB Rule? [y|n]: Enable this Inbound LLB rule? [y|n]: The Rule setting is: For example: Inbound LLB Rule 123, Enabled Description: My a.com inbound rule, Domain: www.a.com. Local Service 53 (DNS, TCP), Local Server Group MyDNSGroup. Link Selection by Least Connection Links: NAT (VIP) ISP1, IP: 200.11.11.11 with WAN Link WAN1, IP: 200.1.1.1 NAT (VIP) ISP2, IP: 100.11.11.11 with WAN Link WAN2, IP: 100.1.1.1 NAT (VIP) ISP3, IP: 50.11.11.11 no WAN Link Do you want to submit this rule? [y|n]: | |
clntprox | |
Displays the Client Proximity menu. To view this menu, see /cfg/slb/gslb/clntprox Global SLB Client Proximity Menu. | |
dnsresvip | |
Displays the DNS Responder VIP menu. To view this menu, see /cfg/slb/gslb/dnsresvip GSLB DNS Responder VIP Menu. Default: enable | |
dnssec | |
dnsproxy | |
dnssoa | |
Displays the DNS SOA Configuration menu. To view this menu, see /cfg/slb/gslb/dnssoa DNS SOA Configuration Menu. | |
dnscaa | |
Displays the DNS CAA Configuration menu. To view this menu, see /cfg/slb/gslb/dnscaa DNS CAA Configuration Menu. | |
nsgroup | |
Displays the DNS Nameserver Group menu. To view this menu, see /cfg/slb/gslb/nsgroup DNS Nameserver Group Menu. | |
version <DSSP version 1, 2, 3, 4, or 5> | |
Sets the Distributed Site State Protocol (DSSP) version that is used to send out the remote site updates. | |
port <TCP port number> | |
Sets the TCP port number for remote site updates for GSLB. Default: 80 | |
sinter <remote site updates interval in seconds, 10-7200> | |
Sets the time interval in seconds for remote site updates. Values: 10 – 7200 | |
sesscap <Session utilization capacity threshold (1-100)> | |
Sets the threshold (percentage) for session utilization capacity. Default: 90 | |
cpucap <CPU utilization capacity threshold (1-100)> | |
Sets the threshold (percentage) for the CPU utilization capacity. Default: 90 | |
smask <IP subnet mask (eg, 255.255.255.0)> | |
Sets the source IP netmask for DNS persistence cache. Default: 255.255.255.0 | |
sprefix <set IP6 prefix len (eg, 64)> | |
Sets the IPv6 prefix length for DNS persistence cache. Values: 1 – 128 Default: 64 | |
timeout <timeout in minutes, 1-1440> | |
Sets the timeout in minutes for DNS persistence cache. Values: 1 – 1440 | |
mincon <available sessions threshold, 0-65535> | |
Defines the capacity threshold for the sessions available on the real server for GSLB. Values: 1 – 65535 | |
nodomain <nxdomain|refuse> | |
Sets the DNS response code when the Alteon is authoritative server for the domain, but not the sub-domain. When domain is unknown to Alteon, the response code is refuse. Values: ![]() ![]() | |
dns <disable|enable> | |
Enables or disables responses to DNS queries. When enabled, Alteon always responds to DNS queries by providing a local virtual server IP address, as long as the virtual server IP address has healthy real servers with an aggregate number of available connections equal to the total from each server’s configured maxcons value, minus the server’s current number of connections. When the real servers for the local virtual server IP addresses are unavailable or saturated, Alteon responds to DNS requests using normal GSLB rules. If inbound link load balancing is enabled at /cfg/slb/linklb, Alteon ignores this dns command and does not perform GSLB. If inbound link load balancing is disabled, and this dns command is enabled, Alteon performs load balancing, and selects a local or remote VIP address, according to the configured GSLB metrics. If both link load balancing and this dns command are enabled, Alteon attempts to use link load balancing. If it fails, it attempts to use the GSLB DNS. If both link load balancing and this dns command are disabled, Alteon does not respond to DNS queries. Default: enable | |
hostlk <disable|enable> | |
Enables or disables lookups based on host or domain name in a GSLB configuration. Values: ![]() ![]() Default: enable | |
redirect <disable|enable> | |
Enables or disables HTTP or HTTPS redirection-based GSLB. | |
http <disable|enable> | |
Enables or disables HTTP redirects to peer sites by this Alteon. Values: ![]() ![]() Default: enable | |
usern <disable|enable> | |
Enables or disables an HTTP redirect to a real server name. When a site redirects a client to another site using an HTTP redirect, the client is redirected to the new site’s IP address. Values: ![]() ![]() Default: disable | |
norem <disable|enable> | |
Enables or disables no-remote real server load balancing. If enabled, Alteon does not perform remote real server load balancing for non-HTTP protocols. For HTTP protocols, if you want to perform no-remote-real-server load balancing, you must disable the http parameter (see in this table). | |
encrypt <disable|enable> | |
Enables or disables encrypting of DSSP updates. If disabled, Alteon does not encrypt the DSSP messages going out of Alteon. This option allows the GSLB feature to work with older versions of the Web OS that do not encrypt DSSP messages. Default: enable | |
dsync <disable|enable> | |
Enables or disables synchronization of the DNS persistence cache with remote sites using the DSSP protocol. Synchronization of the persistence cache between Alteons located in different data centers ensures DNS persistence, even when selecting a data center based on the load metric, not only the hash metric. Default: enable | |
downrsp <srvfail|norsp> | |
Specifies how Alteon behaves when a DNS client requests a server or service that is not active on Alteon. ![]() ![]() Default: srvfail | |
on | |
Activates GSLB for this Alteon. This option can be performed only after the optional GSLB software is activated (for more information, see /oper/swkey Activating Software). | |
off | |
Turns GSLB off for this Alteon. Any active remote sites still perform GSLB services with each other, but do not hand off requests to this Alteon. Default: off | |
cur | |
Displays the current GSLB configuration. |