Forum Discussion
dragonflymr
Cirrostratus
CirrostratusSNAT, VS and multiple Idle Timeout setting
Hi,
I am a bit lost how Idle Timeout (IT) is managed when there are different object involved for given connection.
VS has Idle Timeout set via TCP profile (let's say it's Standard VS), SNA...
nitass
Employee
Employeeand this one.
configuration - fastl4 idle timeout is 30s, snat ip idle timeout is indefinite
root@(ve11b)(cfg-sync In Sync)(Active)(/Common)(tmos) list ltm virtual bar
ltm virtual bar {
cmp-enabled no
destination 0.0.0.0:0
ip-forward
ip-protocol icmp
mask any
profiles {
fastl4_30 { }
}
source 0.0.0.0/0
source-address-translation {
pool norf
type snat
}
translate-address disabled
translate-port disabled
vs-index 8
}
root@(ve11b)(cfg-sync In Sync)(Active)(/Common)(tmos) list ltm profile fastl4 fastl4_30
ltm profile fastl4 fastl4_30 {
app-service none
idle-timeout 30
}
root@(ve11b)(cfg-sync In Sync)(Active)(/Common)(tmos) list ltm snat-translation 200.200.200.* ip-idle-timeout
ltm snat-translation 200.200.200.55 {
ip-idle-timeout indefinite
}
ltm snat-translation 200.200.200.66 {
ip-idle-timeout indefinite
}
ltm snat-translation 200.200.200.77 {
ip-idle-timeout indefinite
}
replay icmp echo request twice
[root@centos1 ~] hping -0 -H 1 -E /var/tmp/ping.bin -d 64 200.200.200.101
HPING 200.200.200.101 (eth0 200.200.200.101): raw IP mode set, 20 headers + 64 data bytes
[main] memlockall(): Success
Warning: can't disable memory paging!
--- 200.200.200.101 hping statistic ---
1 packets tramitted, 0 packets received, 100% packet loss
round-trip min/avg/max = 0.0/0.0/0.0 ms
[root@centos1 ~]
[root@centos1 ~]
[root@centos1 ~] hping -0 -H 1 -E /var/tmp/ping.bin -d 64 200.200.200.101
HPING 200.200.200.101 (eth0 200.200.200.101): raw IP mode set, 20 headers + 64 data bytes
[main] memlockall(): Success
Warning: can't disable memory paging!
--- 200.200.200.101 hping statistic ---
1 packets tramitted, 0 packets received, 100% packet loss
round-trip min/avg/max = 0.0/0.0/0.0 ms
connection table - record is deleted after 30s, new connection uses new snat ip
root@(ve11b)(cfg-sync In Sync)(Active)(/Common)(tmos) show sys connection protocol icmp all-properties
Sys::Connections
172.28.24.1:58991 - 200.200.200.101:8 - 200.200.200.77:30374 - 200.200.200.101:8
--------------------------------------------------------------------------------
TMM 0
Type any
Acceleration none
Protocol icmp
Idle Time 20
Idle Timeout 30
Unit ID 1
Lasthop /Common/external 00:50:56:b3:59:8d
Virtual Path 200.200.200.101:8
Conn Id 0
ClientSide ServerSide
Client Addr 172.28.24.1:58991 200.200.200.77:30374
Server Addr 200.200.200.101:8 200.200.200.101:8
Bits In 672 672
Bits Out 672 672
Packets In 1 1
Packets Out 1 1
Total records returned: 1
root@(ve11b)(cfg-sync In Sync)(Active)(/Common)(tmos)
root@(ve11b)(cfg-sync In Sync)(Active)(/Common)(tmos)
root@(ve11b)(cfg-sync In Sync)(Active)(/Common)(tmos)
root@(ve11b)(cfg-sync In Sync)(Active)(/Common)(tmos) show sys connection protocol icmp all-properties
Sys::Connections
Total records returned: 0
root@(ve11b)(cfg-sync In Sync)(Active)(/Common)(tmos)
root@(ve11b)(cfg-sync In Sync)(Active)(/Common)(tmos)
root@(ve11b)(cfg-sync In Sync)(Active)(/Common)(tmos)
root@(ve11b)(cfg-sync In Sync)(Active)(/Common)(tmos) show sys connection protocol icmp all-properties
Sys::Connections
172.28.24.1:58991 - 200.200.200.101:8 - 200.200.200.55:18980 - 200.200.200.101:8
--------------------------------------------------------------------------------
TMM 0
Type any
Acceleration none
Protocol icmp
Idle Time 2
Idle Timeout 30
Unit ID 1
Lasthop /Common/external 00:50:56:b3:59:8d
Virtual Path 200.200.200.101:8
Conn Id 0
ClientSide ServerSide
Client Addr 172.28.24.1:58991 200.200.200.55:18980
Server Addr 200.200.200.101:8 200.200.200.101:8
Bits In 672 672
Bits Out 672 672
Packets In 1 1
Packets Out 1 1
Total records returned: 1
