Hi,I'm very new in BIG5, I would like to ask your help, I had a power cut and when the power came up, I wasn't able to access the management GUI but I can ping, also when I tried to ssh, it promps for user/password but it doesn't accept none of the accounts credentials, the only way I can access at the moment is via console, the software image I'm using is BIGIP-14.1.2.8-0.0.7I tried to restart the httpd and tomcat but didn't produce any change.Any ideas? Thanks

Hİ Nuno_xzorp,As you said in your first post, you could not login via ssh due to wrong credentials. In the second post the mac address is different in the arp record. Could you please make sure you try to connect the right device? I mean after power issue, the bigip may get a new IP address. Please connect via console again, and check your IP address of bigip device. If it is the same IP with the address you are pinging, then check your listening port in your bigip device via netstat command and share with us the result.netstat -ano | grep LISTEN | grep 443

Hi Nuno_zorp,Ok, the bigip listens on port 443. Could you please try to reach from terminal of your local PC to bigip via telnet?telnet bigip_IP 443If the output of telnet is connected, then we can say we have layer4 connectivity. Also, if you use proxy in your browser settings, please disable it and try to connect https://bigip_IP

Hi Nuno_xzorp,Although both devices are on the same network, and port 443 listens on the bigip, you could not reach. Could you please start a tcpdump on your management interface of bigip device, and try to telnet again? I wonder if you see the SYN packet on the tcpdump? tcpdump -nni name_of_mgmt_interface port 443

Hi Nuno_xzorp, When you connect your bigip device via console, do you see any errors in /var/log/httpd/httpd_errors logs?Please make sure https service is working on bigip device. Have a nice day.

Hi oguzy,I checked that but don't see any error.Meantime I found the mgmt port mac-address last digit is diferent from listed on switch arp entry, not sure if this have influence because I can ping and reach via ssh.Thanks

Big5 LTM GUI not reachable but can ping

12 Replies

oguzy
Cirrostratus
Sep 12, 2021
Hi Nuno_xzorp,

When you connect your bigip device via console, do you see any errors in /var/log/httpd/httpd_errors logs?
Please make sure https service is working on bigip device.

Have a nice day.
- Nuno_xzorp
  Altostratus
  Sep 12, 2021
  Hi oguzy,
  I checked that but don't see any error.
  Meantime I found the mgmt port mac-address last digit is diferent from listed on switch arp entry, not sure if this have influence because I can ping and reach via ssh.
  Thanks
  - oguzy
    Cirrostratus
    Sep 12, 2021
    Hİ Nuno_xzorp,
    As you said in your first post, you could not login via ssh due to wrong credentials. In the second post the mac address is different in the arp record. Could you please make sure you try to connect the right device? I mean after power issue, the bigip may get a new IP address. Please connect via console again, and check your IP address of bigip device. If it is the same IP with the address you are pinging, then check your listening port in your bigip device via netstat command and share with us the result.
    netstat -ano | grep LISTEN | grep 443
Nuno_xzorp
Altostratus
Sep 12, 2021
Hi oguzy, I tried but it gave me the following message ".Could not open connection to the host, on port 443: Connect failed"
I'm not using any proxy in my browser settings.
I checked also httpd port :
sys httpd {
ssl-port 443
}
I don't have any firewall in between and I'm trying from same subnet
any clue?

Thanks
- oguzy
  Cirrostratus
  Sep 12, 2021
  Hi Nuno_xzorp,
  Although both devices are on the same network, and port 443 listens on the bigip, you could not reach.
  Could you please start a tcpdump on your management interface of bigip device, and try to telnet again? I wonder if you see the SYN packet on the tcpdump?
  tcpdump -nni name_of_mgmt_interface port 443
  - Nuno_xzorp
    Altostratus
    Sep 13, 2021
    Hi oguzy,
    thanks for the reply. Sorry to be able to answer just now. So I did like you suggested for port 443:
    1) # tcpdump -nni mgmt port 443
    tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
    listening on mgmt, link-type EN10MB (Ethernet), capture size 65535 bytes
    
    ^C
    0 packets captured
    0 packets received by filter
    0 packets dropped by kernel
    
    2) I also tried one thing, capturing port 22 while doing a ssh connection, but surprisely I got nothing (but got the ssh prompt):
    # tcpdump -nni mgmt port 22
    tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
    listening on mgmt, link-type EN10MB (Ethernet), capture size 65535 bytes
    ^C
    0 packets captured
    0 packets received by filter
    0 packets dropped by kernel
    
    what do you think?

Forum Discussion

Big5 LTM GUI not reachable but can ping

12 Replies

Recent Discussions

import live updates from version x to version y

Tenant image upgrade

iRule editor partition button does not work

F5Access | MacOS Sonoma

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

Related Content

F5-OS Rseries. Asking about Ping command

unable to ping VIP from server with the F5 as the DGW

Ping External Class

Seeing "echo (ping) request -- (no response found!)" from a ACI leaf to the F5 floating ip

Can a Health Monitor tell a server's 'ping' page about the F5's status?