F5 VIP no longer reachable after cert renewal

Question

We have an issue with one of our VIPs after a cert renewal (keeping current key pair) showing active enabled on the F5 as well as the two members in the pool behind it. When we try to get to the VIP our requests time out and it is not ping-able. This is the first time I have had an issue like this with one of our VIPs on the F5. We renewed other Certs that day that are still working just fine. Anyone have any tips?

joselabra · Answer

Hi!&nbsp;
Can you paste the configuration of VS, please.
Are you sure that you do not change any configuration in the process of changing the certificate?
Best regards

afr_jn · Answer

Hi brandon_aponte ,&nbsp;To minimize impact changing the certificate, it would be better to create new SSL_Profile then change the SSL_Profile in the Virtual Server to the new one. Are you sure that you do not change any configuration?&nbsp;The VIP (Virtual Address) not ping-able? Make sure that you set the ICMP echo in virtual address configuration to Always.

Forum Discussion

F5 VIP no longer reachable after cert renewal

Recent Discussions

Which process is consuming higher CPU

F5 Health Monitor Receive String as JSON

Background Tasks

SSL bridging without SSL proxy forward

Big-IP VE edition for MacBook M4 Chip

Related Content

AS3 w/ certificates and renewals..

issue with URL after certificate renewal.

Security Sidebar: Is Tor No Longer Safe?

SSL Certificate renewal without any downtime

Renewing for SSL Certificate

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS