For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Leonard_54199's avatar
Leonard_54199
Icon for Nimbostratus rankNimbostratus
Sep 18, 2007

F5 load balancing problem

Hi all,     Currently i have two F5 running on BIG-IP 9.1.2 Build 69.0 at two different sites A and B. The F5 load balancers are configured in a mirror configuration that means if the web server...
config
design
Deb_Allen_18's avatar
Deb_Allen_18
Historic F5 Account
Sep 20, 2007
You wouldn't want to force traffic to a server LTM thinks is down. You should try to figure out why the traffic is switching and fix that issue instead of implementing a brute force workaround.

 

 

So if I understand correctly, you have something like this set up?

 

 

Site A virtual server

 

...pool member SiteA_Server priority 10

 

...pool member SiteB_Server priority 5

 

 

Site B virtual server

 

...pool member SiteB_Server priority 10

 

...pool member SiteA_Server priority 5

 

 

and you're using standard DNS to resolve the virtual server address?

 

 

If that's the case, there are a couple of things you might want to look into to determine what's going on.

 

 

DNS switching to different virtual server

 

If DNS hands out 2 answers, the client may decide to use either of them fairly indiscriminately, typically choosing one until it fails to respond.

 

 

Regardless of how many answers are returned by DNS, the answers have a defined timeout (TTL) and the client will eventually have to resolve the name again, and there is no guarantee which answer will be sent or used.

 

 

You could see if the same client is hitting both virtuals by running a packet trace on the LTM external interface @ both sites & looking for the same client sourceIP.

 

 

LTM switching to different pool member

 

If the local server appears down to LTM, it will send traffic to the remote server instead. You're probably using a SNAT to ensure the return traffic is routed appropriately, and if so, examination of the server logs would show you which LTM sourced the connection. If no SNAT is in place, you can see if the same client is using both servers in the pool by running a packet trace on the LTM internal interface & looking for the same client sourceIP going to both pool members, then examining the LTM logs to see if the local pool member was marked down mid-session.

 

 

If you see that the monitored server status changed, verify your actual server status & adjust the monitor configuration if LTM is marking your nodes down too aggressively.

 

 

HTH

 

/deb