Mar 27, 2026 - For details about updated CVE-2025-53521 (BIG-IP APM vulnerability), refer to K000156741.

Forum Discussion

davidy2001's avatar
davidy2001
Icon for Cirrus rankCirrus
Nov 24, 2022

Client get access from only one node

  Hello, Client access virtual server via http and can get web page from node: win21 and win22. Based on the below, the connection number increase one by one between both. why most time client get w...
application delivery
davidy2001's avatar
davidy2001
Icon for Cirrus rankCirrus
Nov 24, 2022

Patrik_Jonsson 

"Which load balancing method are you using on the pool? Do you have an HTTP profile assigned on the VIP?"

its default config. now VIP(floating ip, my understanding) has not setup yet. I am only using one F5. No HTTP profile setup

Patrik_Jonsson's avatar
Patrik_Jonsson
Icon for MVP rankMVP
Nov 24, 2022

How are you performing the tests? If you ie. run tests using curl a few times, do you get a different result? Curl does not keep the connection open after making the request. Like I said before, if it''s an HTTP application you can try oneconnect if you absolutely must have even spread between the servers.

Just remember to set the load balancing method to ie. predictive and assign an HTTP profile to the Virtual server. Persistence profile should be set to None.

Kind regards,
Patrik

  • davidy2001's avatar
    davidy2001
    Icon for Cirrus rankCirrus
    Nov 25, 2022

    two nodes win21 and win22 have different webpage(just change default page in iis). when outside user access virtual server via google(repeatedly click on the address), the page that the browser show does not change between the two nodes, meaning the user almost visit one node win21. occasionly visit win22, or vice versa. no any other config on persistence etc

    • Patrik_Jonsson's avatar
      Patrik_Jonsson
      Icon for MVP rankMVP
      Nov 25, 2022

      Then please read my first message. Chrome will keep the connection open between requests and the same pool member will get them as the F5 device will map connection 1:1 between frontend and backend. As long as the client side connection does not die, neither does the server side. This won't be a problem when you have more clients contacting the page. 

      If you want to validate this you can assign this iRule to the Virtual server:

      when HTTP_RESPONSE {
    HTTP::header insert "Connection" "Close"
}

      Just don't leave this on the Virtual server when you ship this as it's terribly inefficient. 🙂

      Or assign an HTTP profile to the virtual server and then assign a One connect profile (the default will do). Then the F5 device will establish server side connections and keep them open. This will allow you to load balance per request.

      Kind regards,
      Patrik

      • davidy2001's avatar
        davidy2001
        Icon for Cirrus rankCirrus
        Nov 25, 2022

        Thank you Patrik_Jonsson for your reply. I tried ie and chrome. both have same issue. and I added iRule you provided above to virtual server. It still cannot resolve the issue. but I am not sure if what i did iRule is correct. anyway thanks