Forum Discussion
Nimbostratusconfigure GTM for Standalone Server
Good morning,
I try to configure F5 GTM for "manage" a standalone server without LTM... But F5 GTM check (always) the server with iquery port, the server can not respons with this port only http... but the f5 do not apply the monitor configuration.....
IF you have a idea or installation guide in this case....
Best regards
16 Replies
StephanMantheyNacreous
Hi jeromef,
your setup will require to configure a so called "Generic Host" as server.
This new server will have a virtual server with IP/TCP service defined. It can be assigned to a GTM pool and monitored by the selected monitor.
Thanks, Stephan
jeromef_184180Hi Stephan, I have creat generic host and VirtualServer with Same IP but with TCP port (80) this VS is add to pool and WideIP...all item is blue....and no check and no resolution....
Best regards
- StephanMantheyHi jeromef, did you assign a monitor, i.e. ICMP, to the configuration object? Please have a look at your log file when applying changes: tail -f /var/log/gtm Thanks, Stephan
- jeromef_184180
I have add the healh Monitors: - For VS : http => Status RED - For Pool : http => Status RED
But I not see the http packet send by GTM for check server. message in /var/log: Feb 2 16:08:51 GTM-FR-SU-NIB-1 alert gtmd[10434]: 011ae0f2:1: Monitor instance /Common/http 10.X.X.Y:80 UNKNOWN_MONITOR_STATE --> DOWN from (no reply from big3d: timed out) Feb 2 16:08:51 GTM-FR-SU-NIB-1 alert gtmd[10434]: 011ae0f2:1: Monitor instance /Common/http 10.X.X.Z:80 UNKNOWN_MONITOR_STATE --> DOWN from (no reply from big3d: timed out)
Best regards
- StephanManthey
Hi jeromef,
there is a network route and a matching self IP on your GTM to connect to the generic host for monitoring? You can ping the generic host from GTM´s shell or do a "
"? Is the GTM configured as a server and is it "up"? GTM server object and generic host server object belong to the same datacenter? Thanks, Stephancurl http:// - jeromef_184180
Hi Stephan,
the host is alive form GTM by ping , for start i like check with this method, but i find only "icmp_gateway" it's possible to check generic host with simple ping??? best regards
- StephanMantheyHi Jerome, as the host is only defined via it´s IP address, only service independent monitors can be selected. In case you create a new monitor with "alias" port set, it will become available for assignment as well. Thanks, Stephan
- jeromef_184180
Hi stephan,
the host (generic host) is reachable form GTM (cli) with ping and curl command (http standard port).. i have configure a generic host with virtual server (Same IP of generic host but with port 80) with check http (fixed on generic host and virtual server) i have add this virtual server on new pool, all element is ko (red) generic host/virtualserver/pool...I don't understand...
Best regards
- StephanMantheyHi Jerome, how about the state of your GTM server? In WebUI > Global Traffic > Servers you should also have the GTM configured (as BIG-IP device with "bigip" healthmonidor assigned). Does it show up there and is it "up"? Is your GTM added to a "sync" group? Do you see continuous messages in /var/log/gtm (tail -f /var/log/gtm) regarding failing connections? Daemons inside GTM and between GTM controllers (in same sync group) communicate via F5 iQuery protocol via TCP/4353. iQuery is using the device certificates for authentication. Did you already run the "bigip_add" and "gtm_script" on the device? I guess the internal device communication is not set up or broken and that´s why the external server´s availability isn´t reported properly to the gtmd. Steps to troubleshoot: 1. create new device certificate (using the unit´s hostname as CN and 3650 days) 2. have a internal self IP in allow service "default" 3. optional: run "bigip_add " (should not be necessary) During all steps run "tail -f /var/log/gtm" in a separate console. You should see GTM joining sync-group and turning "green". You should see other servers (i.e. your generic host) turning "green" Please note, that the PortLockDown settings are opening services on your BIG-IP. Make sure to block unauthorized traffic to the self IP, please. Thanks, Stephan
- jeromef_184180Hi stephan, the status of GTM is green/ok , the GTM is not sync with other group (standalone) in /var/log/gtm zero message is present....strange for allow service "default" on internal SelfIP i apply Traffic Group?? Best regards
- jeromef_184180
I have realize a tcpdump and gtm...i see no packet send by gtm for check generic host...
- StephanMantheyHi Jerome, did you find time to follow the described steps for troubleshooting? I assume internal device communication between gtmd and big3d is not configured. To get this done you can follow the troubleshooting steps. Thanks, Stephan
- gsharri
Altostratus
Jerome, is the GTM the only BIG-IP device in that exists in you configuration? There are no other GTM/LTMs?
- jeromef_184180
Yes it's only 1 GTM on BIGIP. after successfull configuration i try to synchronise with other GTM/BIGIP
Best regards
- gsharriOkay, just so I understand correctly, when you view the server list under global traffic you have one bigip server (the GTM) and one generic host. Correct?
