Forum Discussion
Festah_29458
Nimbostratus
Nimbostratusbigip networking Configuration Guide
Hi,
I'm having some issues with setting up our BigIP, I have configured a VIP, nodes, pools, monitors, etc all appear fine and the monitors detect the nodes are active. When trying to access the VIP I get no response via web or by ping. I can only think I have messed up the networking side however can not find any documentation for this.
I have the Configuration Guide for LTM but this does not cover the networking.
Does any one have any ideas or know where I can get Configuration Guide for the networking side.
Cheers.
12 Replies
L4L7_53191Have a look here: https://support.f5.com/kb/en-us/products/big-ip_ltm/manuals/product/bigip_nsm_guide_943.html
-Matt
Festah_29458that should do the trick. cheers.- Festah_29458I'm still having issues with this, have been over the guide and all appears to be set up correctly. However I still get no response to the vip, I can only assume the bigip is not responding to arp requests for the vip.
We are running version 10.1.0, has anyone else had a similar issue? 
hoolioCirrostratus
Can you ping the virtual server IP from the LTM command line? Can you post the VIP and pool config using 'b virtual VIP_NAME list' and 'b pool POOL_NAME list'?
Thanks,
Aaron- Festah_29458Hi,
Yes I can ping the VIP from the LTM command line.
as requested; (I'm just testing the box at the moment so there is not alot to it)
-------------------------
'b virtual VIP_NAME list'
-------------------------
virtual test_virtual_server {
pool test_pool
destination 10.101.2.47:http
ip protocol tcp
persist test_persist_profile
profiles {
test_http_profile {}
test_lan-optimized_tcp_profile {
serverside
}
test_wan-optimized_tcp_profile {
clientside
}
}
}
-----------------------
'b pool POOL_NAME list'
-----------------------
pool test_pool {
lb method member least conn
members 10.101.2.188:http {
priority 1
}
}
Cheers. - hoolioCan you run a tcpdump on the LTM command line looking for any traffic to/from the VIP and then test a remote ping and HTTP request?
tcpdump -nni 0.0 -Xs0 host 10.101.2.47
Also, once you get the client to VIP connection working, if the pool members' default gateway isn't the LTM self IP on its subnet, you should enable SNAT automap on the VIP. This ensures that the pool members respond back to LTM.
Thanks,
Aaron - Festah_29458tcpdump -nni 0.0 -Xs0 host 10.101.2.47 returned no output
tcpdump -nni 1.1 -Xs0 host 10.101.2.47 does show some arp action so bang goes my theory.
----
ping
----
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on 1.1, link-type EN10MB (Ethernet), capture size 65535 bytes
11:41:51.294752 arp who-has 10.101.2.47 tell 10.101.2.254
0x0000: 0000 0806 0001 0800 0604 0001 001c f9f4 ................
0x0010: 88c1 0a65 02fe 0000 0000 0000 0a65 022f ...e.........e./
0x0020: 0000 0000 0000 0000 0000 0000 0000 0000 ................
0x0030: 0000 ..
11:41:56.504180 arp who-has 10.101.2.47 tell 10.101.2.254
0x0000: 0000 0806 0001 0800 0604 0001 001c f9f4 ................
0x0010: 88c1 0a65 02fe 0000 0000 0000 0a65 022f ...e.........e./
0x0020: 0000 0000 0000 0000 0000 0000 0000 0000 ................
0x0030: 0000 ..
11:42:07.522525 arp who-has 10.101.2.47 tell 10.101.2.254
0x0000: 0000 0806 0001 0800 0604 0001 001c f9f4 ................
0x0010: 88c1 0a65 02fe 0000 0000 0000 0a65 022f ...e.........e./
0x0020: 0000 0000 0000 0000 0000 0000 0000 0000 ................
0x0030: 0000 ..
3 packets captured
3 packets received by filter
0 packets dropped by kernel
----
http
----
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on 1.1, link-type EN10MB (Ethernet), capture size 65535 bytes
11:43:30.255423 arp who-has 10.101.2.47 tell 10.101.2.254
0x0000: 0000 0806 0001 0800 0604 0001 001c f9f4 ................
0x0010: 88c1 0a65 02fe 0000 0000 0000 0a65 022f ...e.........e./
0x0020: 0000 0000 0000 0000 0000 0000 0000 0000 ................
0x0030: 0000 ..
11:43:33.460289 arp who-has 10.101.2.47 tell 10.101.2.254
0x0000: 0000 0806 0001 0800 0604 0001 001c f9f4 ................
0x0010: 88c1 0a65 02fe 0000 0000 0000 0a65 022f ...e.........e./
0x0020: 0000 0000 0000 0000 0000 0000 0000 0000 ................
0x0030: 0000 ..
11:43:39.268496 arp who-has 10.101.2.47 tell 10.101.2.254
0x0000: 0000 0806 0001 0800 0604 0001 001c f9f4 ................
0x0010: 88c1 0a65 02fe 0000 0000 0000 0a65 022f ...e.........e./
0x0020: 0000 0000 0000 0000 0000 0000 0000 0000 ................
0x0030: 0000 ..
3 packets captured
3 packets received by filter
0 packets dropped by kernel
Cheers. - hoolioAre you running on the LTM virtual edition by chance? I would have expected 0.0 to show traffic on all switch ports.
The tcpdump shows the ARP broadcast from the client, but no response from LTM. Is the VIP address disabled by chance? Can you run 'b virtual address 10.101.2.47 list' and reply with the output?
Aaron - Festah_29458We have a bigip 1600 physical appliance.
output as follows; (does not show much, the web GUI thinks the virtual address is enabled)
virtual address 10.101.2.47 {}
We do have support for the device, so if this gets to the point I'm best just raising a call let me know. - hoolioI'm at a bit of a loss as to why LTM wouldn't answer ARP requests for a VIP. If you do open a support case can you reply back with the solution?
Thanks, Aaron
