Help
Technical Forum
Ask questions. Discover Answers.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Technical Forum Quicklinks: No Replies | Active-Not Solved | Recent Solutions
Custom Alert Banner

F5 AppWorld 2024 session proposal deadline extended to Friday, December 8th!

BIG-IP Peer self local IP cannot be ping

SolarJeans
Cirrus
Cirrus

‎30-Mar-2023 21:20

Hi Expert,

I have a big-ip in HA setting.

But if I am in primary one, I cannot ping peer local self IP.

I can ping primary local and floating IP. 

https://my.f5.com/manage/s/article/K3475

I check this link, and I do tcpdump in primary one, I can see I am using primary local self IP as source IP.

In peer one tcpdump, I can see 

12:14:59.719138 ARP, Request who-has 172.166.94.174 tell 172.166.94.163, length 48 out slot1/tmm2 lis=

It seems the ARP not completed, so it should fix in network side or BIG-IP? 

172.166.94.174 is my gateway and 172.166.94.163 is peer local self ip

 

In primary one tcpdump, I can see below:

12:19:48.827770 ARP, Request who-has 172.166.94.163 tell 172.166.94.162, length 48 out slot1/tmm1 lis=

172.166.94.162 is my loca self ip

Labels:
0 Kudos
5 REPLIES 5

Leslie_Hubertus
Community Manager
Community Manager

‎31-Mar-2023 10:38

Hey @SolarJeans - I think maybe @Mohamed_Ahmed_Kansoh may be able to answer this one?

Mohamed_Ahmed_Kansoh
MVP
MVP

‎31-Mar-2023 13:46

Thanks @Leslie_Hubertus . 
Hi @SolarJeans , 

What I understood till now , 
- if you're in primary node you can ping ( primary node self ip and floating ip ) that's make sense because it's owned by primary one. 

- you can't ping the peer self ip ( 172.166.94.163 ).

- I think the linked article will not help you in this case 

 I want to know The below results when tring to ping both of devices ? 
as I see in this one "  12:14:59.719138 ARP, Request who-has 172.166.94.174 tell 172.166.94.163, length 48 out slot1/tmm2 lis= " you are directed to ask the gateway. 

- Could you please to check the assigned Vlan ( 2 local self ips and floating one ) make sure they are a in the same correct Vlan.

- I see you connects both of f5 devices by a L3 switch , so can you try to ping the Big-ips gateway ( Switch interface ip ) which connects with both of Big-ip devices in this subnet ( 172.166.94.x ). 

- If I miss some points please explain to me your network connectivity ( Vlans and a simple design ) to see which devices interacts with Bigip. 

- Try to ping ( the Local self IP and Floating one )of the Peer device from Peer device itself.

I will wait your response 

_______________________
Regards
Mohamed Kansoh

Leslie_Hubertus
Community Manager
Community Manager
In response to Mohamed_Ahmed_Kansoh

‎03-Apr-2023 17:34

Hi @SolarJeans  - if you still need assistance with this, can you please answer @Mohamed_Ahmed_Kansoh's questions so he can help?

0 Kudos

SolarJeans
Cirrus
Cirrus
In response to Mohamed_Ahmed_Kansoh

‎11-Apr-2023 20:54

Hello

Sorry for late reply

They are in corrected vlan. However, the peer one cannot ping the gateway.

It seems this is network problem instead of BIG-IP problem

0 Kudos

Mohamed_Ahmed_Kansoh
MVP
MVP
In response to SolarJeans

‎12-Apr-2023 02:19

Hi @SolarJeans , 

Try to add a static ARP entry in both Bigip boxes. 

First)

issue this command on tmsh : 
#show net vlan
and get the HA vlans MAC addresses on both devices.

Second ) 
Add a static ARP entry for both devices in each other. 
Follow this KB to do it : https://my.f5.com/manage/s/article/K16221

on brief , I want you to give up using dynamic arp to map IP & MAC , and using a static entry instead to define your issue is related to big ip interfaces , of one of your nodes can't resolve arp requests. 

Chack again and let me know

_______________________
Regards
Mohamed Kansoh
0 Kudos
Copyright © 2023 Khoros, LLC