For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

newf5learner's avatar
newf5learner
Icon for Nimbostratus rankNimbostratus
Aug 23, 2016

F5 connection mirroring - Active standby pair with network failover (vlan)

Hi,

 

I have a pair of F5 devices in Active standby pair. I have used network failover with a ethernet cable between the two LTMs on interface 1.8 with failsafe vlan.

 

Self-IP address for Failsafe vlan in Unit-A = 172.16.10.1 self-IP address for Failsafe vlan on Unit-B = 172.16.10.2

 

And on Unit-A: Mirroring Configuration Primary Local Mirror Address= 172.16.10.1

 

And on Unit-B: Mirroring Configuration Primary Local Mirror Address= 172.16.10.2

 

Floating self-ip address on external vlan - 10.70.10.1

 

Without any connection mirroring turned on the VIPs, during a failover how will the standby unit know about the connections I have it on external vlan? Do the client needs to re-establish the connections to the VIPs after the failover? How does the floating self-IP address on external vlan failover onto the other unit and will all the existing connections on floating IP remains unchanged ? Please advise.

 

application delivery
LTM
TMOS

1 Reply

  • Vijay_E's avatar
    Vijay_E
    Icon for Cirrus rankCirrus
    Aug 23, 2016

    Without connection mirroring enabled, the standby won't know of the connections in the active device and after failover, established connections may be dropped. Clients would have to re-establish connections. Floating IP address will get mapped to the MAC address of the newly active F5 instead of the previously active F5.