Forum Discussion
Delete Management Default Route?
- Jan 23, 2023
レザ If you currently have a default route configured for the management interface on the F5 this had to have been added into the configuration because by default the management interface only knows about the network that it resides in. As others have stated, if you remove the default gateway from the management interface routing table everything will not leave through the selfIPs of the F5 except for any routes that you add using the following command in tmsh. This command is based on your servers are in a 10.10.10.0/24 network and your management interface of the F5 is in 10.10.9.0/24 and the gateway for that network is 10.10.9.1.
create sys management-route route_1 network 10.10.10.0/24 gateway 10.10.9.1
Anything that wants to reach the management interface IP you will have to add one of these routes so that the management interface knows how to reach that destination. Also keep in mind that now you will have to look at 2 routing tables when troubleshooting why traffic isn't working on the routed path being the selfIP interfaces. I would recommend adding in /32 routes as often as possible to the management routing table in order to avoid the issue previously described. You cannot have traffic leaving the management interface and the other routed interfaces for the same destination without causing issues. Make sure that the traffic communicating to the management interface will indeed only talk to that interface of the F5. Make sure you have a way to configure these devices locally if for some reason you lose network access to these devices as well as the credentials for the local users on the devices.
management and TMM are different things.
If you don't have a default gateway on the management interface , you will not be able to reach anything besides that network.
As far as I know, you can not add routes in management plane using GUI. Maybe from bash. But I never tried.
When you add routes from GUI , you add them in TMM plane(space).
Static routes affect the network that they are routing.
If you add a route and have pool members pointing to servers in that network. Of course the traffic and monitors will go that way.
It really depends on what you have on networks that you plan to add routes to.
When you have HA, you usually use an ip from the same network for each device. So adding routes should not affect this.
Recent Discussions
Related Content
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com