Forum Discussion
gtm_add failed
Please check the Self-IP configuration for the interface/VLAN and confirm whether the Port Lockdown setting is allowed ssh.
- williamtanMar 03, 2019Altostratus
Self IP port lockdown is set to allow default.
- RaghavendraSY_7Mar 03, 2019Cumulonimbus
what version you are running on GTM devices?
- RaghavendraSY_7Mar 03, 2019Cumulonimbus
I hope bash shell is enabled on both F5 devices.
- williamtanMar 03, 2019Altostratus
Both running in version 12.1.3.2. I can ssh to mgmt IP using root account. If I ssh to external IP of existing GTM, it was failed. I have try telnet port 22 from outside to external IP of existing GTM and run tcpdump. Below are the output.
[root@GTM:Active:Standalone] config tcpdump -nni 1.1 -vv host X.X.Y.Y and port 22 tcpdump: listening on 1.1, link-type EN10MB (Ethernet), capture size 65535 bytes 17:48:40.688104 IP (tos 0x0, ttl 121, id 4122, offset 0, flags [DF], proto TCP (6), length 52) 210.195.27.234.63179 > X.X.Y.Y.22: Flags [S], cksum 0x9dcc (correct), seq 3434528005, win 17520, options [mss 1440,nop,wscale 8,nop,nop,sackOK], length 0 in slot1/tmm0 lis= 17:48:43.688044 IP (tos 0x0, ttl 121, id 4123, offset 0, flags [DF], proto TCP (6), length 52) 210.195.27.234.63179 > X.X.Y.Y.22: Flags [S], cksum 0x9dcc (correct), seq 3434528005, win 17520, options [mss 1440,nop,wscale 8,nop,nop,sackOK], length 0 in slot1/tmm0 lis= 17:48:49.688832 IP (tos 0x0, ttl 121, id 4124, offset 0, flags [DF], proto TCP (6), length 52) 210.195.27.234.63179 > X.X.Y.Y.22: Flags [S], cksum 0x9dcc (correct), seq 3434528005, win 17520, options [mss 1440,nop,wscale 8,nop,nop,sackOK], length 0 in slot1/tmm0 lis=
^C 3 packets captured 3 packets received by filter 0 packets dropped by kernel
- SurgeonMar 03, 2019Ret. Employee
Check routes, firewalls and routers. Port 22 need to be allowed across all the way from GTM1 to GTM2
- williamtanMar 03, 2019Altostratus
The tcpdump was taken from existing GTM. Existing GTM was able to receive the telnet on port 22 but it did not reply.
Recent Discussions
Related Content
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com