GTM/DNS and LTM - iQuery via Mgmt Ort Self-ip

Question

Hey Guys,
is it possible to connect the GTMs and LTMs (for dataexchange via iquery) via the mgmt interface and is there a best practice to do this via mgmt interface OR a configured self-ip?&nbsp;

dario_garrido · Answer

Hello eneR&nbsp;
"An iQuery connection is defined as an SSL connection on port 4353 from a local gtmd process to the big3d process on a remote or local BIG-IP server. When big3d starts, it listens for port 4353 on all configured self IP addresses and the management interface IP address."&nbsp;
REF - https://support.f5.com/csp/article/K9837&nbsp;
I recommend you to use always the TMM instead of Mgmt interface.&nbsp;
KR,
Dario.&nbsp;

andy_mcgrath · Answer

You can technically use the Management interface and found useful to run gtm_add targetting the management interface as SSH is required, and often blocked on production networks, to perform certificate swap and form the trust between BIG-IP devices.
You can also add multiple IP addresses into a Server configured on the F5 DNS/GTM and an iQuery connection will attempt to be established to all IP addresses from each F5 DNS/GTM device. Only one iQuery connection between each device is actually required but I would avoid having failing iQuery connections if you can help it.

Forum Discussion

GTM/DNS and LTM - iQuery via Mgmt Ort Self-ip

2 Replies

Recent Discussions

GTM Packet Capture command

How to Implement 2 Way SSL in F5 LTM

BWC iRule

Citrix XenServer Big-IP Upgrade help

BIG-IP DNS iRule issue with static variable

Related Content

Lightboard Lessons: F5 BIG-IP DNS (GTM) iQuery Protocol Overview

Copy over self IPs from several partitions

Export GTM/DNS Configuration in CSV - tmsh cli script

DNS load balancing to backend servers using GTM/LTM.

Export GTM/DNS Virtual Servers Configuration in CSV - tmsh cli script