For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

BigIPUser's avatar
BigIPUser
Icon for Nimbostratus rankNimbostratus
Nov 11, 2019

vxlan tunnel to BigIP in aws

We are trying to setup a vxlan tunnel to BIGIP in aws from our ec2 instance(both bigIP and our ec2 instance are in the same VPC). When we ping F5 over vxlan tunnels, TCPDUMP shows icmp unreachable e...
BIG-IP
cloud
Robby_Stahl's avatar
Robby_Stahl
Ret. Employee
Nov 13, 2019

Greetings!

 

Are you certain that the self-IPs you have created are associated with the correct VLAN? That is my best guess from the problem description. This documentation is a good start for troubleshooting ideas. ( https://techdocs.f5.com/kb/en-us/products/big-ip_ltm/manuals/product/bigip-tmos-tunnels-ipsec-13-1-0/2.html )

 

Basically:

  • check that VLANs exist / are sane
  • verify self-IPs are mapped to the intended VLANs
  • verify the tunnel exists
  • consider using route domains (these tags only exist within BIG-IP, so there's no harm; performance is the same)
  • verify routing within BIG-IP
  • verify forwarding looks correct