For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

gothicreader_23's avatar
gothicreader_23
Icon for Nimbostratus rankNimbostratus
Nov 25, 2015

Does a Node have to be part of a pool?

We have an 2200 LTM. Not certain of the version, but it should up to date, or close to it.

 

Do you have to have a node part of a pool?

 

Thanks in advance.

 

Judy

 

application delivery
BIG-IP
LTM

6 Replies

  • JRahm's avatar
    JRahm
    Icon for Admin rankAdmin
    Nov 26, 2015
    A pool is made up of one or more IP:port definitions of server addresses. A node is just the IP, which can potentially service multiple services. Can you clarify what you are trying to accomplish?
  • gothicreader_23's avatar
    gothicreader_23
    Icon for Nimbostratus rankNimbostratus
    Nov 26, 2015

    We have a web server that I have set up as a node, and assigned a health monitor for https. However, we're unable to reach the server from the external network. I can ping the server from the load balancers. We have other configured VIPs and POOLs with nodes that are working perfectly fine. My logic tells me that I don't need a pool for only one web server?

     

    I hope this helps.

     

    Thanks, Judy

     

    • nathe's avatar
      nathe
      Icon for Cirrocumulus rankCirrocumulus
      Nov 26, 2015
      You still need the concept of a pool, even if there is only 1 pool member (the web server). As Jason mentioned, a node is just an IP, when you add a node to a Pool to become a pool member you assign it a port, such as port 80.
  • gothicreader_23's avatar
    gothicreader_23
    Icon for Nimbostratus rankNimbostratus
    Nov 26, 2015

    I went ahead and created a pool and added the node to the pool. I also created a health monitor for port 443 and associated the health monitor to the pool. When I do a packet capture from my workstation to the web server, I see a lot of TCP retransmissions, until the page times out. On the web server running tomcat, I don't see in the log file any connection, nor when I do a netstat of my workstation.

     

    Just want to point out that we have other web servers setup in the same network in different pools/VIPs without this problem.

     

    I'm stumped as to what the problem might be or what I'm doing wrong. Thanks, Judy

     

    • Amine_Kadimi's avatar
      Amine_Kadimi
      Icon for MVP rankMVP
      Nov 26, 2015
      Unless your F5 is the default gateway of your backend servers and in case you didn't configure source translation already, you'll need to go into the virtual server settings and set the value of "source address translation" to "automap".
    • gothicreader_23's avatar
      gothicreader_23
      Icon for Nimbostratus rankNimbostratus
      Nov 27, 2015
      Bingo!!! The automap was not selected and after selecting I was able to reach the web server. Thank you all for your help.