Riverbed Steelhead no longer showing up as a peer and is not optimizing traffic

Posted on 2013-05-13
Last Modified: 2013-05-22
I have five Riverbed Steelheads. One 550H and the HQ and four 250H's at the remote sites. I noticed that one remove site is no longer optimizing traffic and when I look at the peer list, it is missing. How do I add that site back to the peer list and potentially fix the issue with traffic not being optimized?


Question by:JustinGSEIWI
  • 3
  • 2
LVL 17

Accepted Solution

surbabu140977 earned 500 total points
ID: 39164642
peering happens through inpath. So first thing to check is if the inpath ip of the lost 250H is reachable from your HQ.

It's normal that if peering goes off then optimization will also stop.

Another possibility is if there is any change in any firewall regarding port 7800 and 7810. If these 2 ports are getting blocked, peering will not come up. (I hope it's ok, because HQ can connect the other 250H's). Check for any change at the site whether they did anything.

These 2 are striking my mind right now.


Author Comment

ID: 39164697
I am looking at the in path IP of the SH that is having trouble. That is The primary interface IP is I am able to ping both IP's from a server that is at the HQ office. I am assuming that would mean the SH's can talk to each other? I am not sure how else to test that?

I manage the Cisco firewalls and there has been no change in them. I remember when I initially set these things up, they had me make changes to the firewall so that they could auto discover and I left that configuration in place.

Any other thoughts on why they are not peering? All four other SH's are peered together and optimizing fine.



Assisted Solution

JustinGSEIWI earned 0 total points
ID: 39164882
I have made some progress. I checked the firewall even though it should of been fine and found the commands missing. I am not sure why they were no longer there but I added them back in and the SH immediately peered with two other offices. I am still waiting for it to peer with the remaining two SH's but I hope the issue is now resolved.

Any thoughts on why only two of the four have peered? Maybe I am just too impatient?


LVL 17

Expert Comment

ID: 39165837
Make sure interesting traffic is generated, then the peering should happen automatically and quickly.

The other possibility I forgot to mention (may be not reqd in this case) was if someone doing passthrough by mistake.


Author Closing Comment

ID: 39186887
I added the following commands to my ASA to get the SH's to peer again.

policy-map type inspect dns preset_dns_map
409       parameters
410       message-length maximum 4096
411       policy-map global_policy
412       description RiverBed TCP traffic auto discovery rule
413       class inspection_default
414       inspect dns preset_dns_map
415       inspect ftp
416       inspect h323 h225
417       inspect h323 ras
418       inspect rsh
419       inspect rtsp
420       inspect sqlnet
421       inspect skinny
422       inspect sunrpc
423       inspect xdmcp
424       inspect sip
425       inspect netbios
426       inspect tftp
427       class tcp-traffic
428       set connection advanced-options allow-probes

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Vlan to Vlan communication 9 80
What are acceptable WiFi signal strengths 6 59
networking details on centos 6.6 4 52
Need help with VLAN issue 6 38
#Citrix #Citrix Netscaler #HTTP Compression #Load Balance
If your business is like most, chances are you still need to maintain a fax infrastructure for your staff. It’s hard to believe that a communication technology that was thriving in the mid-80s could still be an essential part of your team’s modern I…
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
Here's a very brief overview of the methods PRTG Network Monitor ( offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

920 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now