Forum Discussion

brandon_aponte's avatar
Icon for Nimbostratus rankNimbostratus
Feb 06, 2024

F5 VIP no longer reachable after cert renewal

We have an issue with one of our VIPs after a cert renewal (keeping current key pair) showing active enabled on the F5 as well as the two members in the pool behind it. When we try to get to the VIP our requests time out and it is not ping-able. This is the first time I have had an issue like this with one of our VIPs on the F5. We renewed other Certs that day that are still working just fine. Anyone have any tips?

2 Replies

  • Hi! 

    Can you paste the configuration of VS, please.

    Are you sure that you do not change any configuration in the process of changing the certificate?

    Best regards

  • Hi brandon_aponte ,


    To minimize impact changing the certificate, it would be better to create new SSL_Profile then change the SSL_Profile in the Virtual Server to the new one. Are you sure that you do not change any configuration? 

    The VIP (Virtual Address) not ping-able? Make sure that you set the ICMP echo in virtual address configuration to Always.