Forum Discussion
CirrusNFS requests from privileged port (< 1024) issues with port-reuse
MVPDid you do what was suggested before?
Can you post the virtual server and TCP profile settings?
AltostratusHello,
I did not apply keepalive to this profile because I was reading about how it works and it seems it sends a tcp connection to client and server.
Both are alive so they will answer correctly, but if you think this could work I have no problem to apply it.
The problem seems to trigger when we have a routing issue. Client loses connection to VIP and when it recovers and tries to reuse that connection F5 is not sending packets to the servers.
Client keep sending SYN packets and renewing timeout so never clears connection table.
Deleting connection solves the issue.
This is VS and L4 profile configuration:
show running-config ltm virtual SYNC_NFS_PRE_GCP_JC
ltm virtual SYNC_NFS_PRE_GCP_JC {
description "VIP_ SYNC_NFS_PRE_GCP_JC"
destination 10.158.19.36:any
mask 255.255.255.255
persist {
source_addr {
default yes
}
}
pool POOL_SYNC_NFS_PRE_GCP_JC
profiles {
fastL4 { }
}
source 0.0.0.0/0
source-address-translation {
pool POOL_SNAT_NFS_JC_PRE
type snat
}
translate-address enabled
translate-port enabled
vs-index 225
}
show running-config ltm pool POOL_SYNC_NFS_PRE_GCP_JC
ltm pool POOL_SYNC_NFS_PRE_GCP_JC {
members {
NFS_NAS_PRE_Minsait_GCP:any {
address 10.64.201.145
session monitor-enabled
state up
}
}
monitor gateway_icmp
}
show running-config ltm profile fastl4 fastL4
ltm profile fastl4 fastL4 {
app-service none
idle-timeout 300
mss-override 0
pva-acceleration full
reassemble-fragments disabled
reset-on-timeout enabled
}
