VIP fails Telnet but responds to ICMP

nitass,

 

 

tcmpdump would be same ..with corrected IPs

 

 

tcpdump -nni 0.0 -X -s0 host 10.45.2.20 and port 80 and host 10.45.2.5

 

tcpdump: verbose output suppressed, use -v or -vv for full protocol decode

 

listening on 0.0, link-type EN10MB (Ethernet), capture size 65535 bytes

 

05:20:55.103121 IP 10.45.2.20.36357 > 10.45.2.5.80: S 3089357006:3089357006(0) win 5840 out slot1/tmm1 lis=

 

0x0000: 036d 0800 4500 003c 7233 4000 4006 85ec .m..E..

 

0x0010: 0af5 1645 0af5 166e 8e05 1f54 b823 d8ce ...E...n...T...

 

0x0020: 0000 0000 a002 16d0 a359 0000 0204 05b4 .........Y......

 

0x0030: 0402 080a 382f d4be 0000 0000 0103 0307 ....8/..........

 

0x0040: 0114 0000 0001 0000 0000 0000 0000 0000 ................

 

0x0050: 0000 0000 0000

i am a bit lost. i thought virtual address is 10.45.2.10 and pool member ip is 10.45.2.20. also, translate address is disabled. how come was 10.245.22.110 in tcpdump??

Ah ! .am sorry nitass..

 

 

indeed..

 

 

virtual is - 10.45.2.10,

 

 

pool member is - 10.45.2.20

 

 

plz ignore 10.245.x.x ..it was my bad.

 

 

about translate address disabled - i ve working config..where this is disabled.

about translate address disabled - i ve working config..where this is disabledyes, it is correct. translate address is disabled since you are using npath configuration.

 

 

plz ignore 10.245.x.x ..it was my bad.so, you will do tcpdump and check it again, won't you?

No..

 

 

tcpdump would be same ..with corrected IPs

 

 

tcpdump -nni 0.0 -X -s0 host 10.45.2.20 and port 80 and host 10.45.2.5

 

tcpdump: verbose output suppressed, use -v or -vv for full protocol decode

 

listening on 0.0, link-type EN10MB (Ethernet), capture size 65535 bytes

 

05:20:55.103121 IP 10.45.2.20.36357 > 10.45.2.5.80: S 3089357006:3089357006(0) win 5840 out slot1/tmm1 lis=

 

0x0000: 036d 0800 4500 003c 7233 4000 4006 85ec .m..E..

 

0x0010: 0af5 1645 0af5 166e 8e05 1f54 b823 d8ce ...E...n...T...

05:20:55.103121 IP 10.45.2.20.36357 > 10.45.2.5.80: S 3089357006:3089357006(0) win 5840 out slot1/tmm1 lis= how come 10.45.2.5 was listening on port 80??

 

 

are we looking at correct packet??

my bad..again..am sorry..nitass...handling too many issues ...at the moment.....

 

 

correct tcpdump is as below

 

 

tcpdump -nni 0.0 -X -s0 host 10.45.2.20 and port 80 and host 10.45.2.5

 

tcpdump: verbose output suppressed, use -v or -vv for full protocol decode

 

listening on 0.0, link-type EN10MB (Ethernet), capture size 65535 bytes

 

05:20:55.103121 IP 10.45.2.5.36357 > 10.45.2.20.80: S 3089357006:3089357006(0) win 5840 out slot1/tmm1 lis=

 

0x0000: 036d 0800 4500 003c 7233 4000 4006 85ec .m..E..

 

0x0010: 0af5 1645 0af5 166e 8e05 1f54 b823 d8ce ...E...n...T...

i am totally confused.

 

 

first of all, i understand this is the current virtual configuration.

 

 

virtual vs_80 { translate address disable translate service disable pool pool80 destination 10.45.2.10:www ip protocol tcp persist persist80 profiles fastl4_80 {} vlans 80 enable }1. since translate address is disabled, how come destination ip in tcpdump was 10.45.2.20?

 

2. i thought this is npath configuration but source ip in tcpdump is translated (snat) to selfip. is it npath configuration indeed?

 

 

again, are we looking at correct packet?

nitass,

 

 

10.45.2.20 is pool member

 

 

10.45.2.5 - Self IP in this vlan.

 

 

the tcpdump capture is for sending port 80 traffic to pool member - 10.45.2.20...from source as Self ip - 10.45.2.5..to see if the pool member is responding on that port.

 

 

do u see anything wrong in the tcpdump syntax or output?

do u see anything wrong in the tcpdump syntax or output?the virtual server configuration and tcpdump output is not corresponding (as i mentioned above). i suspect we are looking at the wrong packet.