For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Abed_AL-R_26070's avatar
Abed_AL-R_26070
Icon for Nimbostratus rankNimbostratus
Oct 03, 2017

load balancing behavior

Hi all   I have configured two virtual servers , one with source: 0.0.0.0/0 -production- , and the other one -for tests- with my ip address (more specific) .. but still when I surf to my web site ...
application delivery
LTM
Jad_Tabbara__J1's avatar
Jad_Tabbara__J1
Icon for Cirrostratus rankCirrostratus
Oct 03, 2017

Hi Ac89,

Normally based on the precedence order, more specific VS should process the traffic in the following order :

1 - dest_host, source_host, port

2 - dest_host, source_host, *

3 - dest_host, source_network, port

4 - dest_host, source_network, *

5 - ...  

For more info check https://support.f5.com/csp/article/K14800

In your case, could you verify that both VSs has same dest_host and same port values ? And you have a public VS with 0.0.0.0/0 as source_host for the second you should have specific IP address x.x.x.x/32

You can also verify which VS is handling the traffic using a tcpdump. Example: 

tcpdump -nni 0.0 host "x.x.x.x"

The ouput will be similar to this : 

 11:23:47.334858 IP vip.443 > x.x.x.x.49391: Flags [P.], seq 23274:25504, ack 3006, win 7385, length 2230 out slot1/tmm0 lis=/Common/**vs-name**
11:23:47.335714 IP x.x.x.x.49391 > vip.443: Flags [.], ack 25504, win 64240, length 0 in slot1/tmm0 lis=/Common/**vs-name**

Hope it helps