Forum Discussion
Cae_140395
Nimbostratus
NimbostratusConfiguring tacacs with configuration on Common partition
Hello all!
When i configure authentication through tacacs the request to tacacs server leaves the inband interface 1.1 where the default route is applied. But i have the mgmt interface dedicated for this purpose and i need that request leaves the mgmt interface.
In another big-ip system where i don't have routes or ltm configurations in Common partition the request to tacacs server leaves from mgmt interface normally.
Add the specific route is not a option because the big-ip system informs there is not connected networks to apply the route.
See the error message below:
01070330:3: Static route gateway 172.26.32.254 is not directly connected via an interface.
But my mgmt interface is inside this subnet:
[root@lb786:Active:In Sync] config ifconfig mgmt
mgmt
Link encap:Ethernet HWaddr 00:23:E9:F5:24:41 inet addr:172.26.32.211 Bcast:172.26.32.255 Mask:255.255.255.192
Is there another way to force the tacacs request go through mgmt interface ? Do i need to create a dedicated route-domain for that ?
NikhilBEmployee
You will need to create a management route to the tacacs server or (its subnet). This will take precedence over a tmm route. Here is an SOL for you to read over::
https://support.f5.com/kb/en-us/solutions/public/13000/200/sol13284.html
Cae_140395It works!
Thank you very much NikhilB !