Forum Discussion
rooh_79093
Nimbostratus
Nimbostratuspool members can not ping outside
Dear all
My application servers(pool members) can not access the database servers (out side the big ip) and the default route of my pool members are the Virtual ip!!
Also i have just one vlan(internal).
Thank you in advance...
- If you're sending all traffic for your pool members back through your BIG-IP (via their default routes), and your BIG-IP has only an internal VLAN, meaning it has no way of contacting the external hosts, then it's a good bet that your pool members won't be able to contact those external hosts, either.
Colin - It sounds like you might need to set up a forwarding virtual server similar to the one in this post: Click here
You can change the destination to a more specific subnet and/or port if you only want to support a specific flow. If you want to ping using ICMP, you will need to enable all protocols on the virtual server.
HTH
/deb 
pmokros_72790I had this problem recently while setting up a new LTM pair. Check the "VLAN Traffic" piece of the virtual server config both for the virtual server created for your default gateway and for the virtual server of the load-balanced cluster. I set it for all VLANs on mine.
Heiko_Engemann_Hello,
right now im trying to ping some host from a machine that is behind the bigIP, i tried all the tips here and in the other thread without luck.
I did set VLAN Traffic to all VLAN, also checked all the forwarding profiles under Type , and I did set it to "All Protocols", but none works.
What else can I do to allow a ping to the outside?
thx
hoolioCirrostratus
Are you trying to ping through a VIP? If so, you can either select All Protocols or Other: 1 (Click here). If you've already tried All Protocols, perhaps it's not an issue of the VIP passing it, but routing?
Aaron- Deekdeek_103899Im still having trouble with getting my machines behind the F5 to ping anything on the External Vlan. I have a default Route that goes to my FW, i can ping when im ssh'ed into the F5 But the machines cannot. I tried serval suggestions on the forum but cant seem to fix. looks like this.
machine --->F5---> F5 NAT----> GW ---> - Hamish
Cirrocumulus
Performa tcpdump on interface 0.0 using a filter to just show traffic between the two hosts. e.g.tcpdump -i 0.0 -n -p host and host
Then check that the traffic is
1. Being recieved
2. Being forwarded out the correct interface
3. being recieved by the target host (You'll need a tcpdump at the target for this)
4. The target host is responding
5. The response is being recieved by the F5
6. The F5 is successfully forwarding the response back to the client on the correct interface.
The process is going to be failing at one of these steps. Once you've isolated that, you're 90% on the way to finding out what the problem is.
H
