Forum Discussion

Nimbostratus

Jan 04, 2019

Cannot ping node IP when configured in route-domain.

I am configuring some simple load-bablancing for a mail server on our F5. One VS with a 3 member pool. All configuration for the VS, Nodes, Members, Vlans, Self IP's, Route, Trunks etc have...

application delivery

LTM

Tony_Murphy_380
Jan 08, 2019
Just a quick update: after some line by line setup checking, I found the issue.

The route-domain and self-IP are configured on the F5 as a /23 (255.255.254.0) network, however the three servers we were having issues with were configured with only /24 masks.

The health monitoring ICMP packets were being sent from the F5 to the servers and actually arriving, but since the servers IP addresses were in the begining of the /23 network and the self-IP address on the F5 was at the very top end, the servers replys were being sent to it's configured default gateway as it saw the destination was not on the local subnet (due to the incvorrect mask).

The problem arose due the default gateway being a Checkpoint firewall that was dropping the ICMP echo-replies as it did not see the originating echo-requests as they went direct! If this had just been a basic router the traffic would have completed it's jurney back to the F5, albeit by a different path than the outbound echo-request.

We tested changing the network mask on the three effected servers and immediatley they showed as available nodes on the F5.

Thnaks for the replies.

Stanislas_Piro2

Cumulonimbus

Jan 04, 2019

to easier configure route domains, it is recommended to configure it within a partition.

create a partition Part1
change partition view to Part1 (right top corner selection field)
create a route domain RD1 (ID 1)
Assign RD1 as Part1 default partition (with this configuration, all virtual servers, self IPs, SNAT Pool created in the partition are assigned to RD1 without %1 on each IP)
create self IP
create default route
create all route / static routes
create Pools / virtual servers

Each time you want to configure objects in this route domain, change the partition view to Part1

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Cannot ping node IP when configured in route-domain.

Recent Discussions

Background Tasks

APM with EntraID as idP / request signed

Should config via cli rather than gui?

APM Modern Customization - modify Header in user-common.js and form in user-logon.js

Which process is consuming higher CPU

Related Content

FQDN nodes in non-default route domains

How to find route domain OID

v.10 - A Look at Route Domains

What is the recommended number of route domains for Big-IP-i4800?

Multiple Ways to Configure Usage Reporting in NGINX

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS