We normally deploy Big IP host devices as standalone, how come the guest devices sync with eachother when underlying host devices are not connected, I am coming from Palo alto world where they have HA cables connected and do the high availibilty syncing. How it happens in f5 over standalone hosts?
Hello, in factory-default configurations BIG-IP software includes a local trust domain with one member, which is the local device.
You will always see this group in sync in a standalone scenario, but if you check "Device Management Overview" you'll notice that there is actually only one device (again, local) in the group.
Also, according to K16509:
starting from BIG-IP 11.6.0, the datasync-global-dg device group is automatically created on systems in any of the following scenarios:
After the datasync-global-dg device group is created on the systems, the device group automatically adds all devices in the same trust domain to itself. This includes devices that are not provisioned with the BIG-IP ASM system. The main purpose of the datasync-global-dg device group is to synchronize the system client-side scripts as well as the system cryptographic keys across all of the devices in the same trust domain. Therefore, this device group is essential in order to maintain the consistency of the system scripts and keys across all devices in the trust domain, and must not be removed from the devices.
vCMP Hosts don't need to be an HA pair. They will act as your hypervisor, providing physical resources and physical network connectivity to the Guest instances you're virtualizing on top.
If no HA VLAN is tagged, I would suspect HA between your Guests was built via management interface. You can check this by going into "Device Management > Devices" menu and checking ConfigSync, Mirroring and Failover IP's for both "self" and "peer" objects.
Edit: fixed typos, sorry I'm on mobile.