For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

genseek_32178's avatar
genseek_32178
Icon for Nimbostratus rankNimbostratus
Jun 27, 2012

VS Issue

Hi,     Have the following 2 Virtual servers config,     virtual VS1   pool pl443   destination 1.1.1.1:443   ip protocol tcp   profiles tcp-default   vlan 2 enable   ...
basic
getting started
new to f5
Hamish's avatar
Hamish
Icon for Cirrocumulus rankCirrocumulus
Jul 01, 2012
tcpdump is your friend here. Specifying interface 0.0 you can dump traffic on all interfaces. Drop down to one pool member (Disable the rat) to make debugging simpler), and do something like (Assuming no SNAT, I don't see it in your description at the top)

 

 

 

tcpdump -i 0.0 -nn -p -e "(host and host and port ) or (host and host and port )"

 

 

 

Where

 

clientIP == the IP address of the client

 

vsip == virtual server IP address

 

vsport == virtual server port

 

poolmemberip == IP address of the pool member still up

 

poolmemberpool == port number of the pool member still up

 

 

The -e flag will show you the TAG of the inbound clan. So you'll be able to make sure that the packets back from the poolmember are coming back in the same VLAN as the BigIP sent them out.

 

 

H