Forum Discussion
NimbostratusTwo Different Vlan Problem? Urgent!
You can see topology below. I describe the two different switch ports F5. Untagged switch side everything is works. My problem tag switch side. I describe f5 port 1.2 tagged vlan 1002. Pool and virtual server is green. F5 can access this node. But external client don't access this virtual server ip. F5 version 11.6.0 build 4.0.420 . I'll share a few interesting experiment. I bring to the position disable port 1.2 (1.2 is tagged port) and everthing is works. But i change vlan id this time pool is down. Also one time this virtual server worked but non self ip :) . 2 switch connected same firewall and i write default route this firewall. I think that the issue is related to assymetric routing but assymetric routing configuration did not work well with. Why do you think the problem is originating? The only problem outside access.
Thanks.
8 Replies
ihsanekici_1810i get tcpdump. 12:33:57.067187 arp who-has 1.1.1.50 tell 1.1.1.1
my virtual server ip example : 1.1.1.50 local self ip : 1.1.1.41 float self ip : 1.1.1.40
Stanislas_Piro2Cumulonimbus
Are pool members on the same network as Management interface?
- ihsanekici_1810
No different network with management network
- ihsanekici_1810
It is not there anyone that idea?
- ihsanekici_1810
It is not there anyone that idea?
- boneyard
MVP
do you have Source Address Translation enabled on the virtual server?
also i would say away from private and community VLANs in a sever setup, they might be nice for isolating clients, but servers ... why?
- ihsanekici_1810
yes snat enabled on the virtual server.the topology of the customer's configuration :) .Configuration currently running but VLAN tag on the side of working without self ip. When i define self ip vlan 100 down to the pool, define ip vlan 1002 pool and virtual server up but don't access. Only working without self ip.
- boneyard
if you have no self IPs on the internal side with from which IP is the BIG-IP communicating with the server?
i assume it has to do with the private and community VLAN type, but i never worked with those in combination with F5.
