Forum Discussion
Nimbostratus[Where/How] to use OneConnect for permanent connection?
Guys, I've been trying to get F5 to setup a permanent connection using OneConnect to a real server but couldn't make it work.
So, here's what I have in my setup (all in Lab):
Virtual Server: 111.111.111.111
No default pool member, No persistence profile.
I do a pool redirection using irule, whether it's going to pool A or pool B (different application).
Now the Pool A application team needs this connection to be in permanent connection.
So in pool A node member consists of 192.168.13.250:20000.
I've tried using OneConnect profile in virtual server 111.111.111.111 but to no avail.
I do a tcpdump and see that F5 is actually sending a Reset flag at the end of connection instead of making it permanent for subsequent traffic to use:
14:41:33.166478 IP 192.168.1.100.56678 > 192.168.13.250.20000: R 105:105(0) ack 308 win 4687
Being mindful that all these are SSL packets.
Is there anyway to make this OneConnect works? Or am I missing something?
Thanks.
26 Replies
ciscoarchttp://support.f5.com/kb/en-us/solutions/public/7000/200/sol7208.html?sr=38375186
Recommendations at the end also states:
"The OneConnect profile may be used with any TCP protocol, but only when applied to virtual servers that process simple request/response protocols where transaction boundaries are explicitly obvious, such as those in which each request and each response is contained within a single packet."
However I've confirmed that it's not working for my environment. I took out oneconnect profile, and it works the same.
Anyone have more ideas on how to establish a permanent connection to a pool? Appreciate it.
Cheers.
nitass_89166Noctilucent
However I've confirmed that it's not working for my environment. I took out oneconnect profile, and it works the same.
Anyone have more ideas on how to establish a permanent connection to a pool?you are using irule to detach serverside connection, aren't you?
- ciscoarcHey nitass, I tried that. That didn't work too. In order for me to have a permanent connection to the pool, I thought I should have it disable? eg: ONECONNECT::detach disable
- nitass_89166i think it should be LB::detach because you want to detach serverside connection (make it reusable). have you tried?
- ciscoarcI haven't tried LB::detach So after I use LB::detach, do I use ONECONNECT:reuse enable ?
- nitass
Employee
However I've confirmed that it's not working for my environment. I took out oneconnect profile, and it works the same.
Anyone have more ideas on how to establish a permanent connection to a pool?you are using irule to detach serverside connection, aren't you?
- ciscoarcHey nitass, I tried that. That didn't work too. In order for me to have a permanent connection to the pool, I thought I should have it disable? eg: ONECONNECT::detach disable
- nitassi think it should be LB::detach because you want to detach serverside connection (make it reusable). have you tried?
- ciscoarcI haven't tried LB::detach So after I use LB::detach, do I use ONECONNECT:reuse enable ?
