Forum Discussion

Nimbostratus

Oct 15, 2010

ICMP/TCP Deny on Pool Down

I know this topic was discussed some time ago but i have not yet seen any solid answers, and am wondering if it made it to a feature request. I want to be able to automatically deny the tcp ...

Nimbostratus

Oct 15, 2010

Hey Chris,

This isn't necessarily the default behavior depending on the virtual server configuration. to my knowledge, the VS will *always* respond to ICMP - though there have been RFEs for this in the past. A vanilla virtual server should send a RST if no pool is available but a virtual server has an HTTP profile (or perhaps it depends on iRules attached to it - I can't recall for certain) it will establish the 3-way handshake before tearing down the connection.

As to the original question - I don't know if there has ever been any movement on the RFEs to change this behavior. It is probably worth reaching out to F5 Support and asking for the status and/or to have your request appended to the list.

// Ben

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

ICMP/TCP Deny on Pool Down

AppWorld Berlin iRules Contest!

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

Recent Discussions

Changes to DO and AS3 GitHub - no longer monitored

SSL Forward Proxy, iRules and Client Hello

monitor/healthcheck issue with envoy gateway

Recommendation for Adv. Lab

How to Verify config before loading to F5

Related Content

Deny access to F5 management from specific addresses

ICMP packets on a TCP monitor

Clone Pool Across L3

GTM Pool Members Gone After Maintenance? It's Probably This One Setting

SNAT pool persistence

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS