we have an LTM VE in a HA cluster . We have defined a couple of route domain (RD) and have enabled BGP/BFD for these route domains .
There is a BGP routing configuration present (imish -r RD) . In this configuration peer devices are defined , and by putting RHI (route health injection) we advertise our virtual servers towards these bgp peers .
The current setup is running on version 13.1.1.5 and is working since long time without any issue.
AS v13 is going end of life we tried to upgrade recently to v14.1.5.2 . The upgrade itself went smooth . New version was activated , all pools and virtual servers were present as before. Initially all looked ok .
When we checked out BGP peer (show ip bgp summary) we could see that the peering was established , again this looked ok . But when checking the advertised routes , no routes were being advertised .
"sh ip bgp neighbour x.x.x.x advertised-routes" --> showed no routes present , whereas before we had about 10 virtual servers being announced in v13
I'm aware of article https://cdn.f5.com/product/bugtracker/ID1031425.html concerning BGP advertising . But this is the case when you receive a route , and try to advertise it then from F5 (back to front advertising) .
In our case F5 is end device , and just announcing these virtual servers. So we are not receiving any BGP update and then sending these routes on .
IN the end we needed to rollback to v13 again , by booting from partition with old version . Once this was done all started working again including BGP .
Any idea what could be issue here ? (i've pasted our BGP config here below , it's quite basic)
we use a routemap for blocking incoming updates (DENY-ALL) and with routemap "KERNEL2BGP" we control which virtual servers we can advertise . (each ip we want to announce it mentioned in this routemap)
First you should take this TMOS Version v14.1.5.2 and open F5 Bug tracker web site and see all of it's Bugs , maybe you will find bug related to BGP or BFDs or Advertising routes.
First you should take this TMOS Version v14.1.5.2 and open F5 Bug tracker web site and see all of it's Bugs , maybe you will find bug related to BGP or BFDs or Advertising routes.
Just a remaining question , from bug report https://cdn.f5.com/product/bugtracker/ID1134057.html i can see this is also applicable on the version we use now ( v13.1.1.5 ) . So asking myself why we never encountered this before . Seems to be present in all version & only engineering hotfix will help
navigate virtual address settings to see if { Route advertisement } enabled or not , also have you checked it after upgrade or not ?
I recommend that you can try to upgrade in VE as a test to V14.1.5.2 and see if the Route advertisement value in each Virtual address changed in Version 14 or everything still the same.
we are using a similar configuration for long time, started on v13.1 and now on v14.1.4.4 (migration from v13 to v14 was a couple years ago, don't have notes on exact versions before/after, but didn't see any issues)... for what its worth, it does seem like v14.1 is working... we have multiple route domains and using both BGP and OSPF to do route health injection to advertise our virtual addresses out of each datacenter. we also use a route map to control the redistribution of kernel into bgp/ospf. our route map is based on cidr range using access list (not prefix list).
couple of thoughts/questions:
1. what are the details of your KERNEL2BGP route map (e.g. prefix list or ?)
2. have you tried Enabled or Always on the virtual address route advertisement (vs Selective or When Available)?
3. do the kernel routes show in the "sh ip route" output of imish?
