DNS through prod interface

Question

Hello, we use pool members defined through FQDN.

So far we have used DNS set in system/configuration/device/DNS, it works fine, F5 communicates through mgmt interface with the DNS server.

Can we send DNS queries through production interface instead of management? I know it might be done through iRule (old concept of using FQDN pool members), but I would like to avoid any irules. Is there any other trick?

Thanks,

Zdenek

iaine · Answer

DNS queries should follow the routing table that has been configured on the device. Do you have a management route defined for DNS that will send these requests over the mgmt interface...?

tmsh list sys management-route

zdenda · Answer

There is default route and couple of static for our central management stuff etc. Since DNS is part of system settings I guess it uses management port as default. Do you think we could override it by using /32 route in TMOS (in some partition)?

iaine · Answer

HiYes, a /32 route should take precedence and work ok

Forum Discussion

DNS through prod interface

3 Replies

Recent Discussions

Chrome V 124+ on MacOS - Virtual Server Access Issue

F5Access | MacOS Sonoma

Transaction looks successful but file not downloading

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

F5 Access Guard Deprecated: ZTA APM

Related Content

Application Programming Interface (API) Authentication types simplified

vCMP logical interfaces throughput

Symmetric routing on NGINX Plus with multiple interfaces

Traffic Management User Interface Vulnerability: The Fix and Temporary Mitigation Options

management interface failover