Forum Discussion

Jim_24689's avatar
Jim_24689
Icon for Nimbostratus rankNimbostratus
May 03, 2012

Tracing traffic through an LTM.

Hello

 

 

How can I troubleshoot an LTM configuration where I see traffic proceeding from the backend of the LTM to the application node, and oberving the node responding by sending traffic back to the backend IP address of the LTM while not seeing the VIP of the application respond to the client?

 

 

Could I determine if the node is stomping on the automap SNAT and trying to send the traffic somewhere else ?

 

 

 

I have tcpdump-ed the backend to the node: tcpdump -ni vlan006 host 10.93.65.21 -s 0 -w ./be.cap

 

 

as well as the frontend to the VIP.

 

 

tcpdump -ni -frontend host 10.92.16.81 -s 0 -w ./fe.cap

 

 

The traces do in fact show what the application is observing but I don't know how to debugg it.
config
design
  • John_Matlock_42's avatar
    John_Matlock_42
    Icon for Nimbostratus rankNimbostratus
    May 03, 2012
    You're doing it exact the way I do... You may want to tcpdump on the server to see how it looks there as well. Unfortunately, I don't know of a better way. Slightly off topic, but be sure you're not capturing to your home directory, /var/tmp is a good target directory...

     

     

    John

     

     

     

     

     

     

  • Jake_39981's avatar
    Jake_39981
    Icon for Nimbostratus rankNimbostratus
    May 03, 2012
    I concur with John. I always trap to /var/tmp. I also run my dump just as you do except I cap the size at 1600 usually. Other than at the server, you could trap on your switch. You should see everything between the LTM and the server. If you're using Wireshark, they have good debug tools built in; I usually right click a packet and choose to 'trace conversation' to get just that communication stream broken out. I hope that helps?