Forum Discussion

Cirrostratus

Dec 29, 2022

Solved

About SIP port

Hello, Is there any way to set F5 SIP port 10000-20000 corresponds to the real server port 10000-20000 ? Any help is appreciate.

application delivery

xuwen
Dec 29, 2022
in GUI Main >> Shared Objects >> Port Lists, you can create a defined SIP port range 10000-20000,
then create a sip pool monitor use gateway_icmp
finally, create a VS its "Service Port" use port list SIP and binding a sip pool
if above steps can not work, you can create a vs service port use *All ports and bind this iRules to limit udp sip port range:
when CLIENT_ACCEPTED { if { [UDP::local_port] >= 10000 && [UDP::local_port] <= 20000 } { node 192.168.10.1 } else { drop } }

PSFletchTheTek

Cumulonimbus

Dec 29, 2022

I've done this in the past with no need for the iRule your share objects approach should work nicely.

Just be careful about how you monitor the pool.
Monitoring all 10000 ports will really get in the f5's way.

Amending the health monitor to only look at one of the ports worked for us, as long as thats how its fails.
IE if the system fails you lose all 10000 ports not just one.

if you loose 1 at a time with a failure, health monitoring will need some consideration.

Michaelyang

Cirrostratus

Dec 30, 2022

Hi Cirrocumulus,

Thanks for your reply

How do I add multiple ports to the pool member at once?

Leslie_Hubertus
Ret. Employee
Jan 05, 2023
Hey Michaelyang, you replied to the user rank rather than their username, so I'll just tag both xuwen and PSFletchTheTek to make sure they see your follow-up question.

To tag a user and make sure they see your follow-up in the future, just type @ and their username. You'll see a dropdown, and can then just click on the username you want. 🙂