Customer has given us the Load Balancer, Web, App and Database server IP addresses and ports.
However, we can only see the application traffic on the Load Balancer and Database (Oracle) tiers.
We can't see the IP addresses on the Web or App tiers.
Could the load balancer have changed the IP address?
It's a Cisco CSS load balancer configured in bridge mode.
Thanks for your reply, Ulf.
We do see some IP addresses on the Web and App tiers defined, but they are not coming from the Load Balancer (LB) IP adress.
Based on the architecture, we should see:
LB -> Web -> App -> DB (Database)
On the Web tier defined based o the IP addresses and ports (80 and 443) given by the customer, we can't see traffic coming from the LB.
We have installed the SSL key on the Web tier, and can decode SSL traffic.
So what is the traffic you see against the servers and can you see any traffic to/from the LB?
Are you sure there are not more than one NIC or that there are some virtual/teaming NIC's o the servers?