Quick Config Deploy

Alteon
Startup Configuration and

Quick Application Setup Guide
Software Version 30.5.0

Document ID: RDWR-ALOS-V3050_STAPP1605 May, 2016
Alteon Startup Configuration and Quick Application Setup Guide
2 Document ID: RDWR-ALOS-V3050_STAPP1605

Copyright Notices
The programs included in this product are subject to a restricted use license and can only be used in
conjunction with this application.
The OpenSSL toolkit stays under a dual license, i.e. both the conditions of the OpenSSL License and
the original SSLeay license apply to the toolkit. See below for the actual license texts. Actually both
licenses are BSD-style Open Source licenses. In case of any license issues related to OpenSSL,
please contact openssl-core@openssl.org.
OpenSSL License
Copyright (c) 1998-2011 The OpenSSL Project. All rights reserved.
Redistribution and use in source and binary forms, with or without modification, are permitted
provided that the following conditions are met:
1. Redistributions of source code must retain the above copyright notice, this list of conditions and
the following disclaimer.
2. Redistributions in binary form must reproduce the above copyright notice, this list of conditions
and the following disclaimer in the documentation and/or other materials provided with the
distribution.
3. All advertising materials mentioning features or use of this software must display the following
acknowledgement:
This product includes software developed by the OpenSSL Project for use in the OpenSSL
Toolkit. (http://www.openssl.org/)
4. The names OpenSSL Toolkit and OpenSSL Project must not be used to endorse or promote
products derived from this software without prior written permission. For written permission,
please contact openssl-core@openssl.org.
5. Products derived from this software may not be called OpenSSL nor may OpenSSL appear in
their names without prior written permission of the OpenSSL Project.
6. Redistributions of any form whatsoever must retain the following acknowledgment:
This product includes software developed by the OpenSSL Project for use in the OpenSSL
Toolkit (http://www.openssl.org/)
THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT AS IS'' AND ANY EXPRESSED OR
IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF
MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT
SHALL THE OpenSSL PROJECT OR ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT,
INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR
PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,
WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
POSSIBILITY OF SUCH DAMAGE.
This product includes cryptographic software written by Eric Young (eay@cryptsoft.com). This
product includes software written by Tim Hudson (tjh@cryptsoft.com).
Original SSLeay License
Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
All rights reserved.
This package is an SSL implementation written by Eric Young (eay@cryptsoft.com).
The implementation was written so as to conform with Netscapes SSL.
This library is free for commercial and non-commercial use as long as the following conditions are
aheared to. The following conditions apply to all code found in this distribution, be it the RC4, RSA,
lhash, DES, etc., code; not just the SSL code. The SSL documentation included with this distribution
is covered by the same copyright terms except that the holder is Tim Hudson (tjh@cryptsoft.com).
Document ID: RDWR-ALOS-V3050_STAPP1605 3

Copyright remains Eric Young's, and as such any Copyright notices in the code are not to be
removed.
If this package is used in a product, Eric Young should be given attribution as the author of the parts
of the library used.
This can be in the form of a textual message at program startup or in documentation (online or
textual) provided with the package.
1. Redistributions of source code must retain the copyright notice, this list of conditions and the
following disclaimer.
distribution.
3. All advertising materials mentioning features or use of this software must display the following
acknowledgement:
"This product includes cryptographic software written by Eric Young (eay@cryptsoft.com)"
The word 'cryptographic' can be left out if the rouines from the library being used are not
cryptographic related :-).
4. If you include any Windows specific code (or a derivative thereof) from the apps directory
(application code) you must include an acknowledgment:
"This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
THIS SOFTWARE IS PROVIDED BY ERIC YOUNG AS IS' AND ANY EXPRESS OR IMPLIED
WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF
MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT
SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO,
PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR
BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN
ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH
DAMAGE.
The licence and distribution terms for any publically available version or derivative of this code
cannot be changed. i.e. this code cannot simply be copied and put under another distribution licence
[including the GNU Public Licence.]
This product contains the Rijndael cipher
The Rijndael implementation by Vincent Rijmen, Antoon Bosselaers and Paulo Barreto is in the public
domain and distributed with the following license:
@version 3.0 (December 2000)
Optimized ANSI C code for the Rijndael cipher (now AES)
@author Vincent Rijmen <vincent.rijmen@esat.kuleuven.ac.be>
@author Antoon Bosselaers <antoon.bosselaers@esat.kuleuven.ac.be>
@author Paulo Barreto <paulo.barreto@terra.com.br>
The OnDemand Switch may use software components licensed under the GNU General Public
License Agreement Version 2 (GPL v.2) including LinuxBios and Filo open source projects. The
source code of the LinuxBios and Filo is available from Radware upon request. A copy of the license
can be viewed at: http://www.gnu.org/licenses/old-licenses/gpl-2.0.html.
This code is hereby placed in the public domain.
This product contains code developed by the OpenBSD Project
Copyright 1983, 1990, 1992, 1993, 1995
The Regents of the University of California. All rights reserved.

1. Redistributions of source code must retain the above copyright notice, this list of conditions and
the following disclaimer.
distribution.
3. Neither the name of the University nor the names of its contributors may be used to endorse or
promote products derived from this software without specific prior written permission.
This product includes software developed by Markus Friedl.
This product includes software developed by Theo de Raadt.
This product includes software developed by Niels Provos
This product includes software developed by Dug Song
This product includes software developed by Aaron Campbell
This product includes software developed by Damien Miller
This product includes software developed by Kevin Steves
This product includes software developed by Daniel Kouril
This product includes software developed by Wesley Griffin
This product includes software developed by Per Allansson
This product includes software developed by Nils Nordman
This product includes software developed by Simon Wilkinson
This product contains work derived from the RSA Data Security, Inc. MD5 Message-Digest
Algorithm. RSA Data Security, Inc. makes no representations concerning either the merchantability
of the MD5 Message - Digest Algorithm or the suitability of the MD5 Message - Digest Algorithm for
any particular purpose. It is provided as is without express or implied warranty of any kind.


Deploying Alteon Using Startup Configuration
and Quick Application Setup
This document describes how to quickly deploy Alteon using the Startup Configuration and Quick
Application Setup features available in Alteon version 30.5 and later.
This document describes the following topics:
Configuring Startup Parameters, page 7
Configuring Quick Application Setup, page 12
Configuring Startup Parameters

This section describes how to use basic Alteon configuration parameters.
The Startup Configuration pane, which is directly accessible from the Welcome page, includes the
basic configuration parameters needed for starting up Alteon.
The Startup Configuration pane includes the following tabs:
SystemUsed to define the device system parameters.
NetworkUsed to define the internal (LAN) and external (WAN) interfaces, as well as the
default gateway.
Note: Radware recommends that you assign ID 1 for the internal network, IDs 2 through 4 for
each of the external networks when LinkProof is available (use ID 2 for the external network
when LinkProof is not in use), and ID 5 for the high availability interface.
High-AvailabilityUsed to enable high availability for Alteon.
Note: The High-Availability tab is currently not supported over AWS and Azure public clouds.

Deploying Alteon Using Startup Configuration and Quick Application Setup
To configure the startup parameters

1. In the Welcome pane, click the Startup Configuration link.
2. In the System tab, set the management parameters, the time and date, and default
administrator password as follows:
Note: When DHCP is enabled (default for all Alteon VA platforms), management network
parameters are set automatically from the DHCP.
Figure 1: Startup Configuration: System Tab

Table 1: Startup Configuration: System Parameters
Parameter Description
IP Version Specifies the type of IP address.
Values: IPv4, IPv6
Default: IPv4
Management IP Specifies the IP address of the management interface.
Mask The subnet mask of the interface (for IPv4).
Prefix The prefix length associated with this IP address (for IPv6).
Values: 0128
Management Gateway The IP address of the management gateway.
Enable SSH Specifies whether to enable device management over SSH.
Default: Enabled
Enable Telnet Specifies whether to enable device management over Telnet.
Default: Enabled
Time and Date
Use NTP Specifies whether to enable NTP service.
Values: No, Yes
Default: No
Date The date on the real-time clock in MM/dd/yyyy format.
(This parameter is
displayed only when Use
NTP is No.)
Time The time on the real-time clock in HH:mm:ss format.
(This parameter is
NTP is No.)
Time Zone Specifies the timezone.
(This parameter is
NTP is No.)
Timezone Offset from GMT The NTP server timezone offset from UTC (GMT), formatted as
(This parameter is (+/-)HH:mm.
displayed only when Use Values: -12:59 through +12:59
NTP is No.) Maximum characters: 6
Primary IP Version When using NTP, you must select the IP version (IPv4 or IPv6) and
(This parameter is enter an IP address.
NTP is Yes.)
Advanced Time and Date Opens the Time and Date pane supporting the configuration of all the
time and date parameters.
Admin Password
Current Password The current password for the administrator.
New Password The new password for the administrator.
Maximum characters: 128

Table 1: Startup Configuration: System Parameters (cont.)
Confirm New Password Re-enter the new password for the administrator.
3. Set interface 1 as the internal interface as follows:
Note: When Alteon VA runs in the AWS cloud, the interface IP address is the first data IP
address (eth1).
a. In the Network table, select the interface 1 entry and click , or double-click the entry. The
relevant Edit tab displays.
b. Set the following parameter values:
Figure 2: Startup Configuration: Network Tab

Figure 3: Startup Configuration: Edit Network Tab
Table 2: Startup Configuration: Network Parameters
IP Address The IP address of the interface.
Mask The subnet mask of the interface (for IPv4).
Peer IP The peer interface IP address used in high availability unicast session failover.
Radware recommends that you configure a peer IP address for all IP interfaces
participating in session failover.
Floating IP A floating IP address is a virtual IP address that is identical for both devices in a
high availability pair. The floating IP address is intended for routing purposes from
clients and real servers when they are not located in the same Layer 2 domain.
The floating IP address must reside on the same subnet as the interface, and it
must be different than any other defined IP addresses (virtual IP, proxy IP,
interface IP, and peer IP addresses).
Currently not supported over AWS and Azure public clouds.
4. Set VLAN settings for interface 1 as follows:

a. Select Create New VLAN.
b. In the VLAN field, specify the VLAN associated with the interface.
c. In the port selection table, move the ports belonging to this VLAN to the Selected list.
d. Click Submit.
5. Repeat step 3 and step 4 to set interface 2 as the external interface.
6. Set the IP address as described at step 3 and repeat step 4 to set interface 5 as the high
availability interface.
7. In the Network tab, set the default gateway IP address and click Submit.

8. Define high availability settings as follows:
Figure 4: Startup Configuration: High-Availability Tab
a. In the High-Availability tab, select Switch HA from the High Availability Mode drop-down
list.
b. Associate the mirroring interface and the configuration synchronization interface to the high
availability interface using the following settings:
Primary Mirroring Interface5
Automatic Config SynchronizationEnabled
Configuration Sync Interface5
9. Click Submit.
10. Apply and save your changes.
Alteon is now part of the network and ready for application delivery configuration.
Configuring Quick Application Setup

The Quick Service Setup screen enables you to quickly configure and edit a simple application
service using the minimum of parameters. Alteon automatically creates required objects (such as a
virtual server, group, real servers, SSL policies, and FastView policies) for the virtual service. Via the
Quick Service Setup you can configure HTTP, HTTPS, Basic-SLB (Layer 4 TCP or UDP), SSL, or IP
services.
The application services created in the Quick Service Setup, as well as all objects generated during
the service creation, can be viewed and edited via regular Web pages.

Accessing the Quick Service Setup

You can access the Quick Service Setup screen in the following ways.
To access the Quick Service Setup screen

1. Select Configuration > Application Delivery > Quick Service Setup.
Click to add an entry. The relevant Add tab displays.

or
Select a table row and click to edit an entry. The relevant Edit tab displays.
Alternatively, you can double-click the table row you want to edit.
or
2. Select Configuration > Application Delivery > Virtual Services and click the Quick
Service Creation link.
Alternatively, in the Welcome pane, click the Quick Application Setup link.

Configuring an Application Service Using the Quick Service Setup

You can configure virtual services assigned to a virtual server based on the selected TCP or UDP
application.
To application service using the Quick Service Setup

1. Access the Quick Service Setup screen as described at Accessing the Quick Service Setup,
page 13.
2. Configure the following parameters, and click Submit.
Figure 5: Quick Service Setup: General Parameters and Server Selection Tab

Table 3: Quick Service Setup: General Parameters
Name Specifies the identifier of the virtual server.
Alteon uses the name and the application port of the
service as the identifier for all objects created for this
service (group, SSL policy, FastView policy).
Valid characters: letters, numbers, hyphens, and
underscores
Description Specifies a descriptive name for the virtual server.
Application Specifies the application handled by this virtual service.
The application is defined by type, service port and, when
relevant, transport protocol.
Values:
Basic-SLBYou must configure a service port between
10 and 65534, and you can select either TCP or UDP as
the transport protocol.
HTTPThe service port is set to 80 by default, but you
can define any other port.
HTTPSThe service port is set to 443 by default, but
you can define any other port.
IPThis service intercepts all service ports on the
virtual server IP (service port is set to 1 and is not
editable). You can select either the TCP or UDP
protocol.
SSLThe service port is set to 443 by default, but you
can define any other port.
Default: HTTP
Virtual IP Address Specifies the IP version and address of the virtual server.
The virtual server created within Alteon responds to ARPs
and pings from network ports as if it was a normal server.
Client requests directed to the virtual servers IP address
are balanced among the real servers available to it
through real server group assignments.

Table 3: Quick Service Setup: General Parameters (cont.)
SSL Offload Specifies whether to perform SSL offload for this service.
(Available when the Application is Values:
HTTPS or SSL.) YesEnables SSL offloading for the virtual service.
Yes and encrypt on back-endEnables SSL offloading
for the virtual service and establishes an SSL session
to the back-end server.
NoDisables SSL offloading for the virtual service
Default: Yes
Hostname Certificates Specifies whether a single certificate is used for all
(Available when the Application is hostnames available via this service, or whether each
HTTPS or SSL, and when SSL Offload hostname requires a separate certificate.
is Yes or Yes and encrypt on Values:
back-end.) SingleA single certificate is used for all hostnames.
MultipleA different certificate must be presented for
each hostname using the Server Name Indication
(SNI) capability. A group of server certificates must be
associated with the service to enable this capability.
Default: Single
Select Certificate/Group Specifies the name of the server certificate (single
(Available when the Application is hostname certificate) or certificates group (multiple
HTTPS or SSL, and when SSL Offload hostname certificate) associated with this virtual service.
is Yes or Yes and encrypt on
back-end.)
Table 4: Quick Service Setup: Server Selection Parameters
Use Existing Server Associates this virtual service with an existing real server group.
Group In the Group ID field, select a real server group from the drop-down list.
Define New Server Allows you to create a new server group and to associate it with this virtual
Group service. The group ID is set by the service name and application port.

Table 4: Quick Service Setup: Server Selection Parameters (cont.)
Selection Metric The metric used to select next server in the group.
(Available when Values:
Define New Server Least ConnectionsAlteon sends the incoming connections to the real
Group is selected.) port with the least number of connections.
Round RobinWhen an available server is selected, Alteon ensures
even distribution when choosing a real port to receive the incoming
connection.
Min MissesOptimized for cache redirection. Alteon calculates a value
for each available real server based on the relevant IP address
information in the client request. The server with the highest value is
assigned the connection. This metric attempts to minimize the
disruption of persistence when servers are removed from service. Use
only when persistence is required.
By default, the Min Misses algorithm uses the upper 24 bits of the
source IP address to calculate the real server that the traffic should be
sent to. To use all 32 bits of the source IP address, set the Minmiss
hash option to 32 Bits.
Response TimeAlteon uses the response time between itself and
real servers as a weighting factor. Alteon monitors and records the
amount of time it takes for each real server to reply to a health check to
adjust the real server weights. The weights are adjusted so they are
inversely proportional to a moving average of response time. In such a
scenario, a server with half the response time as another server
receives a weight twice as large.
Server BandwidthAlteon monitors the number of octets sent
between itself and real servers. Servers that process more octets are
considered to have less available bandwidth. Alteon assigns requests
client requests to the server with the greatest available bandwidth.
When the upload and download bandwidths are configured for WAN link
groups, Alteon calculates the server bandwidth based on bandwidth
utilization, not on octets.
HashAlteon selects the real server based on a hash of the client IP
address.
Persistent HashAlteon selects the real server based on a hash of the
client IP address. With Persistent Hash enabled, Alteon supports an
even load distribution (Hash) and stable server assignment (Minmiss)
even when a server in the group goes down. With the Persistent Hash
metric, the first hash always is the same even if a real server is down. If
the first hash hits an unavailable server, Alteon rehashes the client
request based on the actual number of servers available. This results in
a request always being sent to a server that is available.
Least Connections per ServiceAlteon selects the real server based
only on the number of active connections for the service which is load
balanced, and not the total number of connections active on the server.
For example, when selecting a real server for a new HTTP session, a real
server serving one HTTP connection and 20 FTP connections takes
precedence over a real server serving two HTTP connections only.
Default: Least Connections

Health Check Select a predefined or user-defined health check.
(Available when Available predefined health checks: arp, dhcp, dns, ftp, http, httphead,
Define New Server https, icmp, imap, ldap, ldaps, link, logexp, nntp, NoCheck, pop3, radius-aa,
Group is selected.) radius-acc, radius-auth, rtsp, script, sip, sipoptions, smtp, snmp, sslh,
sslhv3, tcp, tcphalfopen, tftp, udp, udpdns, wsp, wtls, wtls-wsp, wtls-wtp,
wtp, wts
Default: tcp
Host Specifies the hostname to be monitored by an HTTP health check.
(Available when
Define New Server
Group is selected,
and the predefined
HTTP health check is
selected.)
Path Specifies the path to be monitored by the HTTP health check.
(Available when
Define New Server
Group is selected.)
Group IP Version Sets the IP version of the real server group.
(Available when Values: IPv4, IPv6, Mixed
Define New Server Default: IPv4
Group is selected.)
Adding a real server These parameters allow you to create a new real server and associate it with
(Available when the group. The parameters available for the real server are:
Define New Server IP versionThis value is inherited from the Group IP Version
Group is selected.) parameter and can be edited only when the Group IP Version is Mixed.
IP addressSpecifies the real server IP address.
PortSpecifies the application port on which the server listens for the
service traffic. If no value is specified, the server listens to the service
port.
Real Server IDSpecifies real server identifier.
Maximum Length: 32 characters.
Allowed characters: alphanumeric, hyphen (-) and underscore (_).
Click to create the new real server and associate it with the group.
Available/selected Associates existing real servers to the group. Select the required real
(Available when servers in the Available list and associate them with the group by using the
Define New Server arrows to move them to the Selected list.
Group is selected.)

Ensure Persistent Specifies whether to enable server persistence for the service.
Load Balancing Server persistence ensures that all connections of a specific client session
reach the same real server.
If the application is Basic-SLB, IP, or SSL with SSL offload, persistence is
ensured per client IP. All connections from the same client are load balanced
to the same server.
If the application is HTTP, HTTPS, or SSL without SSL offload, the session
identifier can be selected in the Persistence Type option.
Persistence Type Specifies the parameter that defines a persistent session.
(Available when Values (depending on application type):
Ensure Persistent Cookie InsertAlteon generates a cookie value, inserts the Set-Cookie
Load Balancing is header in the server response, and records the cookie value and the
selected, and the server. All subsequent HTTP requests carrying this cookie value are
Application forwarded to the same server.
parameter is HTTP,
HTTPS or SSL.) Available only for HTTP services and HTTPS services with SSL offload
(the default persistence type for these services).
Passive CookieThe Web server embeds a cookie in its response to the
client. Alteon records the specified cookie value and server, and
forwards subsequent requests carrying the same cookie value to the
same server.
Available only for HTTP services and HTTPS services with SSL offload.
Cookie RewriteThe server inserts a persistency cookie in the response
but Alteon, and not the network administrator, rewrites it, eliminating
the need for the server to generate cookies for each client.
SSL IDAlteon records the SSL session ID and server, and directs all
subsequent SSL sessions which present the same session ID to the
same real server.
Available only for HTTPS and SSL services without SSL offload.
Client IPUses the client IP address as the session identifier, and
associates all connections from the same client with the same real
server.
Cookie Name The name of the cookie embedded in the server response to the client.
(Available when Alteon records the cookie value and matches it in subsequent requests from
Persistence Type is the same client.
Passive Cookie or Maximum characters: 32
Cookie Rewrite.)

Figure 6: Quick Service Setup: NG Service Tab
Table 5: Quick Service Setup: NG Service Parameters
(This tab is displayed only when the Application is HTTP or HTTPS, with SSL Offload set to Yes
or Yes and encrypt on back-end.)
Perform Web Acceleration (FastView) FastView is a Web Performance Optimization (WPO)
solution that accelerates Web sites and customer-facing
Web applications by up to 40% (with the FastView
configuration optimized by Radware Technical Support). It
transforms front-end optimization (FEO) from a lengthy
and complex process to an automated function performed
in real-time, accelerating Web application response time
for any browser, client, or end-user device. FastView is a
simple-to-deploy solution, based on an asymmetrical
architecture that does not require any integration into Web
application servers or any client installation on the
end-user device.
Note: A FastView license must be installed and
resources allocated before Web acceleration can be
enabled.

Table 5: Quick Service Setup: NG Service Parameters (cont.)
Monitor Application Performance (APM) Enables or disables Application Performance Monitoring
(APM).
Alteon gathers HTTP application performance data and
sends it to the APM server. The APM server gathers all
information, analyzes and displays application
performance and SLA data. The APM server is situated on
the Vision server. An APM license must be installed on
Alteon, and the APM server must be configured before
attempting to activate it as a service. When APM is
activated on a service, Alteon attempts to configure the
new monitored application on the APM server. If this
attempt fails, the event is reported and the APM is disabled
on the service.
Default: Disabled
Increase Server efficiency (HTTP Enables or disables the connection management
Multiplexing) configuration for HTTP traffic.
Connection management increases throughput and server
capacity by minimizing the number of TCP connection
establishments between Alteon and back-end servers. The
TCP overhead is reduced by allowing multiple client
connections to reuse existing server connections. When
used with back-end SSL encryption it also reduces SSL
load on servers because fewer SSL handshakes are
needed.
Default: Disabled
Figure 7: Quick Service Setup: Client NAT Tab

Table 6: Quick Service Setup: Client NAT Parameters
Perform Source IP Translation (Client Client NAT specifies whether to translate the source IP to a
NAT) specified NAT address before forwarding the packet to the
server. This capability can be optionally used to hide the
original client IP, but it is mandatory in the following cases:
When client and servers belong to the same IP address
space (subnet). By using NAT on the client IP, traffic
returning from the server is forced to pass through
Alteon.
When HTTP multiplexing is enabled.
When the clients and servers have different IP versions
(IPv4/v6 gateway conversion is performed).
When source IP translation is enabled for HTTP or
HTTPS with SSL offload service, Alteon enables
automatic inserting on the service of an
X-Forwarded-For header carrying the original client IP.
Client NAT IPv4 Address The Client NAT IPv4 address for the service.
(Available when Perform Source IP
Translation (Client NAT) is selected,
and Group IP Version is IPv4 or
Mixed.)
Mask The subnet mask of the interface.
(Available when Perform Source IP Default: 255.255.255.255
Mixed.)
Client NAT IPv6 Address The Client NAT IPv6 address for the service.
(Available when Perform Source IP
Mixed.)
Prefix The prefix for the Client NAT IPv6 address for the real
(Available when Perform Source IP server.
Translation (Client NAT) is selected, Values: 0128
Mixed.)

Quick Config Deploy

Uploaded by

Document Information

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Quick Config Deploy

Uploaded by

Copyright:

Available Formats

Alteon

Startup Configuration and

Software Version 30.5.0

2 Document ID: RDWR-ALOS-V3050_STAPP1605

Document ID: RDWR-ALOS-V3050_STAPP1605 3

4 Document ID: RDWR-ALOS-V3050_STAPP1605

Document ID: RDWR-ALOS-V3050_STAPP1605 5

6 Document ID: RDWR-ALOS-V3050_STAPP1605

Configuring Startup Parameters

Document ID: RDWR-ALOS-V3050_STAPP1605 7

To configure the startup parameters

Figure 1: Startup Configuration: System Tab

8 Document ID: RDWR-ALOS-V3050_STAPP1605

Table 1: Startup Configuration: System Parameters

Document ID: RDWR-ALOS-V3050_STAPP1605 9

Table 1: Startup Configuration: System Parameters (cont.)

3. Set interface 1 as the internal interface as follows:

Figure 2: Startup Configuration: Network Tab

10 Document ID: RDWR-ALOS-V3050_STAPP1605

Figure 3: Startup Configuration: Edit Network Tab

Table 2: Startup Configuration: Network Parameters

4. Set VLAN settings for interface 1 as follows:

Document ID: RDWR-ALOS-V3050_STAPP1605 11

8. Define high availability settings as follows:

Figure 4: Startup Configuration: High-Availability Tab

Configuring Quick Application Setup

12 Document ID: RDWR-ALOS-V3050_STAPP1605

Accessing the Quick Service Setup

To access the Quick Service Setup screen

Click to add an entry. The relevant Add tab displays.

Document ID: RDWR-ALOS-V3050_STAPP1605 13

Configuring an Application Service Using the Quick Service Setup

To application service using the Quick Service Setup

14 Document ID: RDWR-ALOS-V3050_STAPP1605

Table 3: Quick Service Setup: General Parameters

Document ID: RDWR-ALOS-V3050_STAPP1605 15

Table 3: Quick Service Setup: General Parameters (cont.)

Table 4: Quick Service Setup: Server Selection Parameters

16 Document ID: RDWR-ALOS-V3050_STAPP1605

Table 4: Quick Service Setup: Server Selection Parameters (cont.)

Document ID: RDWR-ALOS-V3050_STAPP1605 17

Table 4: Quick Service Setup: Server Selection Parameters (cont.)

18 Document ID: RDWR-ALOS-V3050_STAPP1605

Table 4: Quick Service Setup: Server Selection Parameters (cont.)

Document ID: RDWR-ALOS-V3050_STAPP1605 19

Figure 6: Quick Service Setup: NG Service Tab

Table 5: Quick Service Setup: NG Service Parameters

20 Document ID: RDWR-ALOS-V3050_STAPP1605

Table 5: Quick Service Setup: NG Service Parameters (cont.)

Figure 7: Quick Service Setup: Client NAT Tab

Document ID: RDWR-ALOS-V3050_STAPP1605 21

Table 6: Quick Service Setup: Client NAT Parameters

22 Document ID: RDWR-ALOS-V3050_STAPP1605

You might also like