Forum Discussion

Altostratus

Jun 30, 2023

Solved

Cannot create tcp-only VirtualServer with bigip-controller

Im running Rancher and ingress-nginx and would like a simple solution to manage VIPs and have automatic update of the pool members, e.g passthru/tcp-only loadbalancing with TLS termination in ingress...

devops

gorantornqvist-sr
Jul 03, 2023
So it appears I should have read the manual better 😛
I was using the wrong CRD, the correct one to use when you need a tcp-only VIP is TransportServer: https://clouddocs.f5.com/containers/latest/userguide/crd/transportserver.html

whisperer

MVP

Jun 30, 2023

These appear to be potential bug reports, not neccessarily questions on configuration or setup. Have you submitted support cases for these issues?

Also, I agree. If you are not performing any SSL termination, or inspecting modifying HTTP traffic in any way on the F5, then you should be able to setup a normal TCP virtual server. Maybe the logic auto-assumes that service port 80 or 443 will always be HTTP, which isnt true.

On another note, are you indeed hosting unencrypted traffic on 443? You are using 'virtualServerHTTPPort' instead of 'virtualServerHTTPSPort'.

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Cannot create tcp-only VirtualServer with bigip-controller

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

F5 DNS Logs in JSON Format

APM - Portal access - Issue

How to configure ssh access by key on F5OS

ASM/AWAF declarative policy

Help with an iRule to disconnect active connections to Pool Members that are "offline"

Related Content

BigIP Controller for Kubernetes not adding pool members

How can k8s CIS CRD VirtualServer reference existing APM Access profile?

iRules code share,only use tcp protocol profile to log tcp dns request and A or AAAA dns answers ip

Node.js HTTP Message Body: Transfer-Encoding and Content-Length in LineRate lrs/virtualServer Module

Bigip restful API remove all the existing client ssl profiles in a virtualserver.

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS