Forum Discussion
mabdrasol
Nimbostratus
NimbostratusListener is not responding to DNS queries from internet
Hello,
we have F5 GTM with LTM at same box in HA.
F5 nodes are behind a firewall.
F5 nodes are using private addresses(self and listeners).
listener ip is nated to public ip in the firewall.
listeners is responding to queries from inside the LAN but not responding to same queries from the internet.
using dig tool for testing
Yoann_Le_Corvi1Cumulonimbus
Hi,
We'll probably need more info there :
- Have you verified that the DNS query send from Internet actually gets to your listener ?
- Maybe a quick tcpdump trace of internal vs external query would help ?
- Have you implemented "Views" ?
- Your NS records for the zone on the Internet are pointing to your listeners right ?
Other info may be required still, but we can start with this
Yoann
mabdrasolHello Yoann
- Have you verified that the DNS query send from Internet actually gets to your listener ?
yes
- Maybe a quick tcpdump trace of internal vs external query would help ?
tcp dump give different output from lan and internet as internet give flag R
- Have you implemented "Views" ?
no
- Your NS records for the zone on the Internet are pointing to your listeners right ?
no , iam using dig to real ip of listener ip
- Yoann_Le_Corvi1
Hi
Quite difficult to know what can go wrong here like this, but a few pointers :
- You listener is enabled on Internal and Public VLANs (if your F5 is multi homed) ?
- You are interrogating in using the same protocol (UDP or TCP) for both tests ? And by the way you have a listener UDP and TCP ?
Yoann