Forum Discussion
Techgeeeg_28888
Jan 14, 2012Nimbostratus
Health Monitor (Synthetic transaction)for Exchange2010
Hi ,
I have deployed MS Exchange 2010 and I am using BIG-IP LTM for doing the load balance on the Exchange servers. I want to have a synthetic health monitor which has a valid user id and password for an exchange account, it should login to the server to declare that the server is up or down. Has anyone deployed this type of health monitor for their exchange environment.
I will be really thankful for some support in this regard.
- hooleylistCirrostratusHi Techgeeeg,
- TechgeeegNimbostratusHi Aaron,
- hooleylistCirrostratusI assume you want to monitor the client access servers which use HTTP(S). That's possible with LTM for Exchange as well. But I'm not sure what authentication method you are using on the Exchange servers? It could be NTLM, basic or digest auth:
- Did you read the deployment guide for Exchange 2010 published on f5.com?
- TechgeeegNimbostratuswell I am using firefox 9.0.1 to import the files and receiving the similar issues I have not tried using other browsers I will try with IE and Chrome. For now if i have to do it through the command line can you refer any document which i may follow to do the same.
- TechgeeegNimbostratusHi Everyone,
- Brian_Mayer_841NimbostratusJust something I'm observing more and more as a trend here in this forum. Literally about every one of the OWA/Exchange monitor login issue threads on this site invetibaly ends with no resolution.. it simply seems that no one really understands exactly how to setup the LTMs to properly monitor OWA services using F5 monitoring capabilities. It seems that we should be able to use built-in HTTPS monitors and use the user/pass combo to accomplish the required Basic Authentication to allow the monitors to work. However, this doesn't really seem to be happening.
- Dayne_Miller_19Historic F5 AccountHello everyone-
8. In the Receive String box, type: OutlookSession=GET /owa/auth/logon.aspx?url=https://mail.example.com/owa/&reason=0HTTP/1.1\r\nUser-Agent: Mozilla/4.0\r\nHost: mail.example.com\r\n\r\n
ltm monitor http /Common/exchange-new-OWA-monitor { defaults-from /Common/http destination *:* interval 30 recv OutlookSession= send "GET /owa/auth/logon.aspx\?url=https://mail.example.com/owa/&reason=0 HTTP/1.1\\r\\nUser-Agent: Mozilla/4.0\\r\\nHost: mail. example.com\\r\\n\\r\\n" time-until-up 0 timeout 91 }
Note the single set of \r\n in that string, as opposed to the \r\n\r\n in the Forms-based Authentication string. We do this because we still need to provide authentication; if we sent a \r\n\r\n at the initial request, the connection would get closed before credentials are presented.GET /owa/\r\n
After switching my CAS box over to Basic and Integrated Windows authentication and restarting IIS, I also get a green monitor status.ltm monitor http /Common/exchange-new-OWA-monitor { defaults-from /Common/http destination *:* interval 30 password Pass1word recv OutlookSession= send "GET /owa/\\r\\n" time-until-up 0 timeout 91 username user01 }
- hooleylistCirrostratusThanks for spelling that out Dayne. It's great info.
- Ryardis_80379NimbostratusOne quesiton I have is for the fqdn in the send strng (mail.example.com in the example above). That should be the DNS name that points to the virtual IP of the F5, correct? So if I have CAS servers of server1.co.com, server2.co.com and server3.co.com that I want to be front-ended by the fqdn of web.co.com the monitor should use web.co.com. Correct?
Recent Discussions
Related Content
DevCentral Quicklinks
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com
Discover DevCentral Connects