Forum Discussion

Rhys_Peters_770's avatar
Rhys_Peters_770
Historic F5 Account
Aug 20, 2012

Telnet from Floating Self IP

I am in the process of testing firewall rules for a HA pair of LTMs.

 

 

I need to be able to generate telnet traffic from the floating self IP to ensure that production traffic will be allowed through. Does anyone know if this is possible?
management
monitoring
    • Dexter2508_1388's avatar
      Dexter2508_1388
      Icon for Nimbostratus rankNimbostratus
      May 18, 2016
      Yes , Netcat can be used to generate all sorts of traffic including Udp and IPV6 type traffic . See examples below : nc -u -4 10.90.100.1 514 , the u option is udp , -4 option is Ipv4 and 514 is the port . In this example I am generating udp traffic for the syslog port 514 to test udp connectivity nc -t -4 10.90.100.1 443 - the t option is tcp , -4 option is Ipv4 and 514 is the port . In this example I am generating tcp traffic for the https port 443 to test tcp connectivity
    • Ken_Schultz_525's avatar
      Ken_Schultz_525
      Icon for Nimbostratus rankNimbostratus
      May 20, 2016
      Yes, nc can be used to generate the test traffic on any given port. HOWEVER... it fails when you use "-s [Floating-IP]" eg nc -v -z -s 10.1.1.2 10.3.4.5 80 ....works fine when .2 is the self-ip, however... nc -v -z -s 10.1.1.1 10.3.4.5 80 .... fails with nc: bind failed: Cannot assign requested address. Anyone know how to source the test traffic from a floating -IP ?
    • Dexter2508_1388's avatar
      Dexter2508_1388
      Icon for Nimbostratus rankNimbostratus
      May 18, 2016
      Yes , Netcat can be used to generate all sorts of traffic including Udp and IPV6 type traffic . See examples below : nc -u -4 10.90.100.1 514 , the u option is udp , -4 option is Ipv4 and 514 is the port . In this example I am generating udp traffic for the syslog port 514 to test udp connectivity nc -t -4 10.90.100.1 443 - the t option is tcp , -4 option is Ipv4 and 514 is the port . In this example I am generating tcp traffic for the https port 443 to test tcp connectivity
    • Ken_Schultz_525's avatar
      Ken_Schultz_525
      Icon for Nimbostratus rankNimbostratus
      May 20, 2016
      Yes, nc can be used to generate the test traffic on any given port. HOWEVER... it fails when you use "-s [Floating-IP]" eg nc -v -z -s 10.1.1.2 10.3.4.5 80 ....works fine when .2 is the self-ip, however... nc -v -z -s 10.1.1.1 10.3.4.5 80 .... fails with nc: bind failed: Cannot assign requested address. Anyone know how to source the test traffic from a floating -IP ?