i do see bigip still sending traffic to pool in irule.
[root@ve10:Active] config b virtual list
virtual bar-tcp {
snat automap
pool foo-a
destination 172.28.19.252:53
ip protocol 6
rules myrule
}
virtual bar-udp {
snat automap
pool foo-a
destination 172.28.19.252:53
ip protocol 17
rules myrule
}
[root@ve10:Active] config b pool foo-a list
pool foo-a {
monitor all fake
members 200.200.200.101:53 {}
}
[root@ve10:Active] config b pool foo-b list
pool foo-b {
members 200.200.200.111:53 {}
}
[root@ve10:Active] config b rule myrule list
rule myrule {
when CLIENT_ACCEPTED {
if { [active_members "foo-a"] < 1 } {
pool "foo-b"
}
}
}
[root@ve10:Active] config b self 200.200.200.253 list
self 200.200.200.253 {
netmask 255.255.255.0
unit 1
floating enable
vlan internal
allow default
}
pool is down
[root@ve10:Active] config b pool foo-a|grep -i pool\ member
+-> POOL MEMBER foo-a/200.200.200.101:53 inactive,down
tcp
[root@ve10:Active] config tcpdump -nni 0.0 not host 200.200.200.10 and port 53 or icmp
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on 0.0, link-type EN10MB (Ethernet), capture size 108 bytes
05:09:49.349283 IP 172.28.19.251.42883 > 172.28.19.252.53: S 1658522725:1658522725(0) win 5840
05:09:49.349411 IP 172.28.19.252.53 > 172.28.19.251.42883: S 2911763653:2911763653(0) ack 1658522726 win 4380
05:09:49.350324 IP 172.28.19.251.42883 > 172.28.19.252.53: . ack 1 win 46
05:09:49.350466 IP 200.200.200.253.42883 > 200.200.200.111.53: S 992993099:992993099(0) win 4380
05:09:49.354379 IP 200.200.200.111.53 > 200.200.200.253.42883: S 2393792889:2393792889(0) ack 992993100 win 5792
05:09:49.354389 IP 200.200.200.253.42883 > 200.200.200.111.53: . ack 1 win 4380
05:10:02.351209 IP 172.28.19.251.42883 > 172.28.19.252.53: P 1:7(6) ack 1 win 46 [|domain]
05:10:02.351231 IP 200.200.200.253.42883 > 200.200.200.111.53: P 1:7(6) ack 1 win 4380 [|domain]
05:10:02.352216 IP 200.200.200.111.53 > 200.200.200.253.42883: . ack 7 win 46
05:10:02.451206 IP 172.28.19.252.53 > 172.28.19.251.42883: . ack 7 win 4386
udp
[root@ve10:Active] config tcpdump -nni 0.0 not host 200.200.200.10 and udp port 53 or icmp
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on 0.0, link-type EN10MB (Ethernet), capture size 108 bytes
05:11:13.351337 IP 172.28.19.251.44005 > 172.28.19.252.53: 30303+ A? www.google.com. (32)
05:11:13.351426 IP 200.200.200.253.44005 > 200.200.200.111.53: 30303+ A? www.google.com. (32)