Does BIG-IP use TMM route-table to reach LDAP Servers for auth?

Question

I'm trying to setup LDAP Authentication on a BIG-IP. This is the first time I do this, and it seems the BIG-IP cannot reach the LDAP server. ldapsearch form CLI return "Can't connect to LDAP Server (-1)"&nbsp;
I suspect a routing problem. I can ping the LDAP server if I specify the MGMT interface as source. If I dont, the ping fails. TMM only has a default route point towards the internet, that's away from the LDAP server.&nbsp;
Does the BIG-IP use the TMM route-table to reach LDAP Auth servers? Otherwise I would at least get a response, right?&nbsp;

amintej · Answer

Hello, you have to add a management route to ldap server. First check the availavble routes,

tmsh list sys management-route

If you don't have route to LDAP, you have to add it, use the next expression:
tmsh create /sys management-route  network / gateway

The BIG-IP system uses management routes to forward traffic through the management interface. For traffic sourced from the management address, the system prefers management routes over TMM routes and uses the most specific matching management route. If no management route is defined or matched, the system uses the most specific matching TMM route. If only a default gateway is defined as a management route, the system will prefer the TMM default gateway.

Forum Discussion

Does BIG-IP use TMM route-table to reach LDAP Servers for auth?

Recent Discussions

Application only need to access from 2 uris

In Radius auth, how to allow second attempt of token input when the first input is incorrect?

AS3 Limitations

Unable to install firmware OS and drop at 10%

Statistics ›› Analytics : HTTP : Overview

Related Content

BIG-IP High Availability with Azure Route Server

Help F5 Transform the BIG-IP Administrator Certification

Happy 20th Birthday, BIG-IP TMOS!

BIG-IP Next: iRules pool routing

BIG-IP Next Automation: AS3 Basics

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS