Forum Discussion
NimbostratusGTM wide ip pool persistence and one pool with 3 x LTM VS
Hello,
Our user WWW clients have three possible routes to the internet and are using GTM to resolve proxy name in a pac file to to a virtual server [VS] in a pool in a wide IP. There are three Big-IPs.
-
The F5 GTMs are data linked
-
Each F5 has one VS for WWW client to resolve proxy to via the GTM wide ip
-
The wide IP has a pool with all three VS
-
the users are resolved to one of the VS IPs for proxy.
-
the VSs are configured as explicit forward proxies
-
the next hop to each F5 is a local internal firewall
Everything works great and has done for quite some time but due to volumes and firewall out of state we need to persist users to a particular VS route out and not get balanced out via different VSs.
If we wanted to persist the clients to a particular VS after the GTM resolves, can we do that with this configuration on the Wide IP Pool? My concern is the config has one wide IP pool which contains the VSs and we are not sure if the Wide IP pool persistence operates down to the pool VS or if it has to work with more than one pool?
Thanks for any help,
Derrick
9 Replies
CSOC_146480forgot to mention version is 11.5.2When you configure WideIP persistence as described here: link text It will persist a user to the IP address that is selected for them, not the pool.
The GTM however only sees the IP address of the DNS server that sent it a request unless your user's DNS entry on their machine is the GTM.
Question: On your user's laptop or desktop, are they pulling IP's from DHCP? If so, what DNS server are they getting?
If the answer is the GTM, then you are fine.
If the answer is another DNS server and everyone in your company gets the same DNS server, then that could be a problem as the GTM will only every see that DNS server as a requestor.
Let me know if that makes sense and answers your question.
- CSOC_146480Thanks James, When we trialed persistence with two Big IP enabled, most of the traffic used one LTM which makes sense now if clients are not using the GTM as their configured DNS. I will check to make sure how all the DNS is working and confirm 100%
- CSOC_146480Thanks James, When we trialed persistence with two Big IP enabled, most of the traffic used one LTM which makes sense now if clients are not using the GTM as their configured DNS. I will check to make sure how all the DNS is working and confirm 100%
- CSOC_146480We are changing the way this is setup now to proxy to the next hop device. Hopefully can avoid this issue in that solution.
James_ThomsonEmployee
When you configure WideIP persistence as described here: link text It will persist a user to the IP address that is selected for them, not the pool.
The GTM however only sees the IP address of the DNS server that sent it a request unless your user's DNS entry on their machine is the GTM.
Question: On your user's laptop or desktop, are they pulling IP's from DHCP? If so, what DNS server are they getting?
If the answer is the GTM, then you are fine.
If the answer is another DNS server and everyone in your company gets the same DNS server, then that could be a problem as the GTM will only every see that DNS server as a requestor.
Let me know if that makes sense and answers your question.
- CSOC_146480Thanks James, When we trialed persistence with two Big IP enabled, most of the traffic used one LTM which makes sense now if clients are not using the GTM as their configured DNS. I will check to make sure how all the DNS is working and confirm 100%
- CSOC_146480Thanks James, When we trialed persistence with two Big IP enabled, most of the traffic used one LTM which makes sense now if clients are not using the GTM as their configured DNS. I will check to make sure how all the DNS is working and confirm 100%
- CSOC_146480We are changing the way this is setup now to proxy to the next hop device. Hopefully can avoid this issue in that solution.
