Hello Anime,
But I have found something new when read the document:
https://support.f5.com/csp/article/K13690
I Found that when run tmsh show /gtm iquery , it is not reporting BIGIP-DNS but just BIGIP
[root@LB1:Active:In Sync] config # tmsh show /gtm iquery
--------------------------------------------------
Gtm::IQuery: 192.168.29.111
--------------------------------------------------
Server LB1
Server Type BIGIP
Data Center dc
Connection Time 06/28/22 18:13:55
State connected
Connection ID 25
Reconnects 1
Backlogs 0
Bits In 729.8M
Bits Out 5.4M
Bytes Dropped 65
Cert Expiration Date 03/16/32 03:02:31
Configuration Time None
Configuration Commit ID 0
Configuration Commit Originator ---
Local TMOS version 16.1.2
Remote TMOS version 16.1.2.2
Local big3d version
Remote big3d version 16.1.2.2.0.0.28
Cipher Name AES256-GCM-SHA384
Cipher Bits 256
Cipher Protocol TLSv1.2
--------------------------------------------------
Gtm::IQuery: 192.168.29.112
--------------------------------------------------
Server LB2
Server Type BIGIP
Data Center dc
Connection Time 06/28/22 18:13:55
State connected
Connection ID 34
Reconnects 29
Backlogs 0
Bits In 754.9M
Bits Out 5.6M
Bytes Dropped 1.2K
Cert Expiration Date 03/16/32 00:57:28
Configuration Time None
Configuration Commit ID 0
Configuration Commit Originator ---
Local TMOS version 16.1.2
Remote TMOS version 16.1.2.2
Local big3d version
Remote big3d version 16.1.2.2.0.0.28
Cipher Name AES256-GCM-SHA384
Cipher Bits 256
Cipher Protocol TLSv1.2
I then try to create a new Prober Pool and put them in, and it seems that makes some progress
Jun 28 18:13:55 LB1 notice gtmd[14472]: 011ae01c:5: Connection complete to 192.168.29.111. Starting SSL handshake
Jun 28 18:13:55 LB1 notice gtmd[14472]: 011ae01c:5: Connection complete to 192.168.29.112. Starting SSL handshake
Jun 28 18:13:55 LB1 notice gtmd[14472]: 011ae01a:5: SSL handshake complete to 192.168.29.111
Jun 28 18:13:55 LB1 notice gtmd[14472]: 011ae01a:5: SSL handshake complete to 192.168.29.112
Jun 28 18:13:56 LB1 notice gtmd[14472]: 011ae058:5: iQuery connection ID:12 to Remote IP:192.168.29.111 replaced with connection ID:25.
Jun 28 18:13:56 LB1 notice gtmd[14472]: 011ae058:5: iQuery connection ID:30 to Remote IP:192.168.29.112 replaced with connection ID:34.
Jun 28 18:30:03 LB1 notice gtmd[14472]: 011ae054:5: New key or certificate file detected, attempting to create new SSL Context.
Jun 28 18:30:03 LB1 notice gtmd[14472]: 011ae05f:5: SSL Context created with cipher list 'AESGCM:AES:!ADH:!AECDH:!PSK:!aECDH:!DSS:!ECDSA:!AES128:-SHA1:AES256-SHA' and minimum TLS version 'TLSv1'.
Jun 28 18:30:14 LB1 notice big3d[9952]: 012b3008:5: SSL Context Cipher list set to: AESGCM:AES:!ADH:!AECDH:!PSK:!aECDH:!DSS:!ECDSA:!AES128:-SHA1:AES256-SHA.
Jun 28 18:30:14 LB1 notice big3d[9952]: 012b3007:5: SSL Context created using minimum TLS version tlsv1, SSL cipher list 'AESGCM:AES:!ADH:!AECDH:!PSK:!aECDH:!DSS:!ECDSA:!AES128:-SHA1:AES256-SHA'.
Jun 28 18:35:11 LB1 notice zrd[14591]: 01150216:5: Notice from named-checkzone: zone 1.1.1.in-addr.arpa/IN: loaded serial 1
Jun 28 18:35:11 LB1 notice zrd[14591]: 01150216:5: Notice from named-checkzone: OK
Jun 28 18:35:11 LB1 notice zrd[14591]: 01150216:5: Notice from named-checkconf: zone abc,hk/IN: loaded serial 2022062104
Jun 28 18:35:11 LB1 notice zrd[14591]: 01150216:5: Notice from named-checkconf: zone jellybase.hk/IN: loaded serial 2022062802
Jun 28 18:35:11 LB1 notice zrd[14591]: 01150216:5: Notice from named-checkconf: zone 1.1.1.in-addr.arpa/IN: loaded serial 1
However it still shows as BIGIP and the DNS still not sync, I am not sure how to fix it, would you please advise how should i fix it so that it can report as BIGIP-DNS when run tmsh show /gtm iquery?
Thanks