Forum Discussion
ryno_110891
Nimbostratus
NimbostratusMonitor on Management Interface?
Hello all,
Super-newbie here wanting to know if it is possible to create a LDAP monitor to use the management interface on a BIGIP 6400 LTM using 9.4.5. All the networks which the self...
hoolio
Cirrostratus
CirrostratusIs this LDAP traffic for load balancing or admin authentication? I'm assuming it's the former.
I assume the load balanced traffic from LTM to the LDAP pool is going out a switch interface and you just can't add the static self IP addresses to the firewalls? If so, I imagine you could technically create an admin route (b mgmt route from the command line) which points the LDAP destined traffic over the mgmt port. I'm not sure if you just get warning messages or if the route is ignored.
If you're actually trying to route load balanced traffic out the management port, it's strongly discouraged. The mgmt port should be isolated from client traffic so the mgmt interface will be available to administrators. Also, the mgmt port is limited to 100Mb. I'm sure there are other reasons to avoid this as well.
Are you sure it's not possible to allow monitor traffic via the switch ports? That's the best practice method for a reason.
Aaron
