F5 BigIP VIP listening on port 443 load balancing to IPs on different ports

Question

On the F5, we have a VIP setup listening on port 443 . it's setup to load balance on IPs listening on two different ports. However when we call the VIP, we get a connection refused. We ran some traces and we see that instead of making calls on each of the ports, its calling on 443. We think we are missing port translation from 443 to the other ports.

Here is a scenario we are testing VIP foo.foo.com on port 443 is load balancing on boo1.abcd.com port 2121 and boo1.abcd.com port 2323 So when we call https://foo.foo.com/service instead of calling boo1.abcd.com on port 2121 or 2323, it calls boo1.abcd.com on port 443 instead

Can someone help figure what we may be missing in the F5 VIP setup to get this to work?

dario_garrido · Answer

Hello.Check if you have these options enabled in your VS configuration.# tmsh list ltm virtual VS-INTWEB_443 translate-address translate-port
ltm virtual VS-INTWEB_443 {
  translate-address enabled
  translate-port enabled
}Regards,Dario.

lb1979 · Answer

Dario,Thank you for this feedback . we'll check on these settings.  Where would we find these options on the F5 or is this an iRule?

dario_garrido · Answer

You can access the same options from the GUI.

>> Local Traffic > Virtual Servers > {Select VS} > Configuration [Advanced]

Address Translation - Enabled

Port Translation - Enabled

Regards,

Dario.

Forum Discussion

F5 BigIP VIP listening on port 443 load balancing to IPs on different ports

3 Replies

Recent Discussions

import live updates from version x to version y

Tenant image upgrade

iRule editor partition button does not work

F5Access | MacOS Sonoma

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

Related Content

Disable vip that is listening on different ports

UDP DNS listener doesn't resolve DNS query but TCP DNS listener can

Copper SFP Differences

Re: NGINX for Azure: Load Balancing

Configuring listener IP for TCP