Forum Discussion
ciscoarc
Nimbostratus
Nimbostratus[Where/How] to use OneConnect for permanent connection?
Guys,
I've been trying to get F5 to setup a permanent connection using OneConnect to a real server but couldn't make it work.
So, here's what I have in my setup (all in Lab):
Virtual Server: 11...
nitass
Employee
Employeethis is what i understand...
configuration
root@(ve11a)(cfg-sync In Sync)(Active)(/Common)(tmos) list ltm virtual bar80
ltm virtual bar80 {
destination 172.28.24.10:80
ip-protocol tcp
mask 255.255.255.255
pool foo80
profiles {
http { }
my1connect { }
tcp { }
}
rules {
myrule80
}
source 0.0.0.0/0
source-address-translation {
type automap
}
vs-index 28
}
root@(ve11a)(cfg-sync In Sync)(Active)(/Common)(tmos) list ltm pool foo80
ltm pool foo80 {
members {
200.200.200.101:80 {
address 200.200.200.101
}
}
}
// to not worry about timeout (when testing), i used indefinite idle timeout.
root@(ve11a)(cfg-sync In Sync)(Active)(/Common)(tmos) list ltm profile one-connect my1connect
ltm profile one-connect my1connect {
app-service none
idle-timeout-override indefinite
}
testing
// send 1 request to virtual server. client sends FIN after receiving the response.
// anyway, bigip does not forward FIN to server. leave the serverside connection idle to be reusable.
[root@ve11a:Active:In Sync] config tcpdump -nni 0.0 -s0 port 80
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on 0.0, link-type EN10MB (Ethernet), capture size 65535 bytes
00:39:32.181811 IP 172.28.24.1.37779 > 172.28.24.10.80: S 1513065117:1513065117(0) win 5840 in slot1/tmm1 lis=
00:39:32.181893 IP 172.28.24.10.80 > 172.28.24.1.37779: S 1841142685:1841142685(0) ack 1513065118 win 4380 out slot1/tmm1 lis=/Common/bar80
00:39:32.186315 IP 172.28.24.1.37779 > 172.28.24.10.80: . ack 1 win 5840 in slot1/tmm1 lis=/Common/bar80
00:39:32.187614 IP 172.28.24.1.37779 > 172.28.24.10.80: P 1:88(87) ack 1 win 5840 in slot1/tmm1 lis=/Common/bar80
00:39:32.187714 IP 200.200.200.14.37779 > 200.200.200.101.80: S 3626688258:3626688258(0) win 4380 out slot1/tmm1 lis=/Common/bar80
00:39:32.187731 IP 172.28.24.10.80 > 172.28.24.1.37779: . ack 88 win 4467 out slot1/tmm1 lis=/Common/bar80
00:39:32.189422 IP 200.200.200.101.80 > 200.200.200.14.37779: S 1071034751:1071034751(0) ack 3626688259 win 5792 in slot1/tmm1 lis=/Common/bar80
00:39:32.189438 IP 200.200.200.14.37779 > 200.200.200.101.80: . ack 1 win 4380 out slot1/tmm1 lis=/Common/bar80
00:39:32.189490 IP 200.200.200.14.37779 > 200.200.200.101.80: P 1:112(111) ack 1 win 4380 out slot1/tmm1 lis=/Common/bar80
00:39:32.191061 IP 200.200.200.101.80 > 200.200.200.14.37779: . ack 112 win 5792 in slot1/tmm1 lis=/Common/bar80
00:39:32.388023 IP 200.200.200.101.80 > 200.200.200.14.37779: P 1:390(389) ack 112 win 5792 in slot1/tmm1 lis=/Common/bar80
00:39:32.388130 IP 172.28.24.10.80 > 172.28.24.1.37779: P 1:385(384) ack 88 win 4467 out slot1/tmm1 lis=/Common/bar80
00:39:32.388154 IP 200.200.200.14.37779 > 200.200.200.101.80: . ack 390 win 4769 out slot1/tmm1 lis=/Common/bar80
00:39:32.388162 IP 172.28.24.10.80 > 172.28.24.1.37779: F 385:385(0) ack 88 win 4467 out slot1/tmm1 lis=/Common/bar80
00:39:32.392468 IP 172.28.24.1.37779 > 172.28.24.10.80: . ack 385 win 6432 in slot1/tmm1 lis=/Common/bar80
00:39:32.392475 IP 172.28.24.1.37779 > 172.28.24.10.80: F 88:88(0) ack 386 win 6432 in slot1/tmm1 lis=/Common/bar80
00:39:32.392498 IP 172.28.24.10.80 > 172.28.24.1.37779: . ack 89 win 4467 out slot1/tmm1 lis=/Common/bar80
// show sys connection and show oneconnect statistic
root@(ve11a)(cfg-sync In Sync)(Active)(/Common)(tmos) show sys connection protocol tcp
Sys::Connections
any6.any any6.any 200.200.200.14:37779 200.200.200.101:80 tcp 3 (tmm: 1) none
root@(ve11a)(cfg-sync In Sync)(Active)(/Common)(tmos) show ltm profile one-connect my1connect
-----------------------------------
Ltm::OneConnect Profile: my1connect
-----------------------------------
Virtual Server Name N/A
Connections
Current Idle 1
Maximum 1
Total Reuses 0
New 1
// after 15 seconds, server sends FIN to close the connection.
00:39:47.413593 IP 200.200.200.101.80 > 200.200.200.14.37779: F 390:390(0) ack 112 win 5792 in slot1/tmm1 lis=/Common/bar80
00:39:47.413636 IP 200.200.200.14.37779 > 200.200.200.101.80: . ack 391 win 4769 out slot1/tmm1 lis=/Common/bar80
00:39:47.413647 IP 200.200.200.14.37779 > 200.200.200.101.80: F 112:112(0) ack 391 win 4769 out slot1/tmm1 lis=/Common/bar80
00:39:47.415217 IP 200.200.200.101.80 > 200.200.200.14.37779: . ack 113 win 5792 in slot1/tmm1 lis=/Common/bar80
// serverside connection is gone
root@(ve11a)(cfg-sync In Sync)(Active)(/Common)(tmos) show sys connection protocol tcp
Sys::Connections
root@(ve11a)(cfg-sync In Sync)(Active)(/Common)(tmos) show ltm profile one-connect my1connect
-----------------------------------
Ltm::OneConnect Profile: my1connect
-----------------------------------
Virtual Server Name N/A
Connections
Current Idle 0
Maximum 1
Total Reuses 0
New 1
