Forum Discussion
Bigjohns97_9840
Nimbostratus
Feb 02, 2012pool members can't connect to their own Virtual Server
I have a load balanced pool of web servers that are part of a VIP on the f5, and there is an application on the web servers that tries to connect to the VIP that they are a member of. I can ...
Beinhard_8950
Nimbostratus
Feb 16, 2012Agree also that asymmetric routing is probably the case.
In case that you having the servers pointing to the f5 as Gw (or similar) and you ping from server it will only showing that you reach the VS (because it´s the Vs itself that respond to that ping).
And because you can ping it, we know that you have enabled it on the servers vlan.
So when your servers try to reach their own VS, it will be asymmetric routing.
Server A try to reach vs X but the answer is coming from B (or even from server A it self because of LB).
server A drops the connection because it has not talked to B.
So the fix is then to implement SNAT for everybody or changes the vs you have to only the external vlan and then make another one for only your server vlan with a snat (same ip but different name).
In case of one armed i guess SNAT for all or an Irule that Hoolio said.
/Beinhard
Recent Discussions
Related Content
DevCentral Quicklinks
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com
Discover DevCentral Connects