For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

farid95's avatar
farid95
Icon for Nimbostratus rankNimbostratus
Jul 24, 2022

F5 BIG IP and wmware workstation

I just started the F5 course. My lab seems to me to be architected like that of the TP. I run it from a VMware Workstation 16. Everything is OK, except the possibility to attack the "external" paw 10.10.10.0/24 from my client machine.
A ping of ip self 10.10.10.200 with the port lockdown allow default option from the PC_Client is failed. A ping of 10.10.10.1 from the PC_Client responds.

The "external" network is connected to my vmnet13 which also connects my Client and the "1.2" interface via the external vlan of the F5-BigIP.

It is therefore impossible for me to perform the access test in HTTP and HTTPS to my VS 10.10.10.10 which does not respond.
If anyone has a lead, I thank them in advance.

Kind regards

 

application delivery

13 Replies

  • LiefZimmerman's avatar
    LiefZimmerman
    Icon for Admin rankAdmin
    Jul 26, 2022

    farid95 - if you have not been able to resolve this yet let me know and I will see if I can get an expert to take a look.

    • farid95's avatar
      farid95
      Icon for Nimbostratus rankNimbostratus
      Jul 26, 2022

      I couldn't find a solotion
      here is my LAB

      network:
      vmnet13 host only 10.10.10.0/24
      vmnet12 host only 172.16.10.0/24

      Network adaptater 2: vmnet12
      Network adaptater 3: vmnet13

      Internal VLAN: Interface 1.1
      External VLAN: 1.2 interface

      Self IP : 172.16.10.200 , vlan internal
      self IP: 10.10.10.200, vlan external , port lockdown default allow


      Ping NOK from my physical machine to 10.10.10.200

      VS: 10.10.10.10:80 with http profile
      the VS is not reachable from my physical machine

      do you have a solution?

  • Jonathancert's avatar
    Jonathancert
    Icon for Altostratus rankAltostratus
    Jul 28, 2022

    I want to make sure i understand your problem.  I believe you want to connect to your VS in VMware form your physical machine and not through a virtual client within VMware.  I've been working on a VMware lab also.  I have two LTM in active/standby and one GTM.  I am able to ping my VS from mt physical machine and even connect to the VS via a browser.  Is it possible your PC firewall could be blocking things.  Is this what you are trying to do (see below).

    kjl0000@(dscclab-ltm1)(cfg-sync Disconnected)(Active)(/Common)(tmos)# sho ltm virtual

    ------------------------------------------------------------------
    Ltm::Virtual Server: cbt_nuggets_vs
    ------------------------------------------------------------------
    Status
    Availability : available
    State : enabled
    Reason : The virtual server is available
    CMP : enabled
    CMP Mode : all-cpus
    Destination : 192.168.157.50:80

    C:\Users\Jonathan>ping 192.168.157.50

    Pinging 192.168.157.50 with 32 bytes of data:
    Reply from 192.168.157.50: bytes=32 time=1ms TTL=255
    Reply from 192.168.157.50: bytes=32 time=1ms TTL=255
    Reply from 192.168.157.50: bytes=32 time=1ms TTL=255
    Reply from 192.168.157.50: bytes=32 time=1ms TTL=255