F5 VIP no longer reachable after cert renewal

Question

We have an issue with one of our VIPs after a cert renewal (keeping current key pair) showing active enabled on the F5 as well as the two members in the pool behind it. When we try to get to the VIP our requests time out and it is not ping-able. This is the first time I have had an issue like this with one of our VIPs on the F5. We renewed other Certs that day that are still working just fine. Anyone have any tips?

joselabra · Answer

Hi!&nbsp;
Can you paste the configuration of VS, please.
Are you sure that you do not change any configuration in the process of changing the certificate?
Best regards

afr_jn · Answer

Hi brandon_aponte ,&nbsp;To minimize impact changing the certificate, it would be better to create new SSL_Profile then change the SSL_Profile in the Virtual Server to the new one. Are you sure that you do not change any configuration?&nbsp;The VIP (Virtual Address) not ping-able? Make sure that you set the ICMP echo in virtual address configuration to Always.

Forum Discussion

F5 VIP no longer reachable after cert renewal

2 Replies

Recent Discussions

Disk space full - what files, folders are safe to delete?

ASM instance creation

BIG-IP DNS: Check Status Of Multiple Monitors Against Pool Member

Open Redirection Mitigation

F5Access | MacOS Sonoma

Related Content

issue with URL after certificate renewal.

Security Sidebar: Is Tor No Longer Safe?

SSL Certificate renewal without any downtime

Renewing for SSL Certificate

Redirect with datagroup not working for keys longer than 31 chars