29-Oct-2012 13:02
before i write a wrapper script for tmsh does anyone know if there's a simple way to find out what pools a single member is in?
Solved! Go to Solution.
29-Oct-2012
13:49
- last edited on
27-Jan-2023
05:22
by
LiefZimmerman
the prompt was getting in the way of the remainder of the commands executing. to combat i did this:
echo y | tmsh list ltm pool|grep -B 20 10.5.72.109 | grep "ltm pool"|awk '{print $3}'
works great now!
29-Oct-2012
13:17
- last edited on
27-Jan-2023
05:18
by
LiefZimmerman
Something like this should do the trick;
list ltm pool | grep -B 20 x.x.x.x | grep ltm pool
The -B 20 specifies the display of twenty 'lines' of output prior to the match for x.x.x.x. If you have pools with many members you may want to increase the value. Each node in a pool takes three lines, each pool name takes 2. So 20 should suffice for pools with up to six members but of course beware that the value isn't too high either else you'll potentially see pool names that the node isn't a member of.
29-Oct-2012 13:31
nambrosch@dqulb01(Active)(tmos.ltm) list pool
Display all 969 items? (y/n) n
29-Oct-2012
13:44
- last edited on
27-Jan-2023
05:19
by
LiefZimmerman
OK, I've tested further using this to show line numbers and whatever the -B value grep seems smart enough not to duplicate matches;
list ltm pool | grep -B 30 x.x.x.x | grep -n ltm pool
29-Oct-2012
13:49
- last edited on
27-Jan-2023
05:22
by
LiefZimmerman
the prompt was getting in the way of the remainder of the commands executing. to combat i did this:
echo y | tmsh list ltm pool|grep -B 20 10.5.72.109 | grep "ltm pool"|awk '{print $3}'
works great now!
27-Jan-2023 05:26
@Nik - I marked this as the solution to your original query. Seems right.
If not...unselect this one.
OR
If you think there are other replies that also qualify as part of the solution (in this post) you can mark them too.
thanks for being crucial to the health of our community.
Lief
29-Oct-2012 14:00
29-Oct-2012 14:04
29-Oct-2012 14:30
29-Oct-2012 17:46
just in case if you have not yet seen this tmsh option.
-q Prevents tmsh from responding to user actions with questions. This
option is useful when writing non-interactive shell scripts from
the system shell.
23-Aug-2013
10:02
- last edited on
27-Jan-2023
05:21
by
LiefZimmerman
I would recommend using the "one-line" parameter to help ensure you don't get false positives due to the vagaries of configuration lengths.
tmsh -q list ltm pool one-line | grep -E '($node_hostname|$node_ip)' | awk '{ print $3 }'
30-Dec-2022 19:48 - edited 30-Dec-2022 19:49
Great!!! this works in tmsh.
list ltm pool one-line | grep "address 192.168.10.12"
16-Mar-2015 12:21
you can also use the "display-threshold" preference to stop tmsh from giving you the "display all items" prompt (set to some reasonably large number for your environment):
modify cli preference display-threshold 500
16-Mar-2015
13:57
- last edited on
22-Nov-2022
15:25
by
JimmyPackets
Hi all,
I found this post while attempting to do something very similar, and thought I'd share what I came up with. It's my first time posting code on devcentral, so hopefully it comes through with the formatting in tact. FYI I'm running this directly on the LTM, version 11.2.1
Caveats:
1. The script uses full output of 'tmsh list' a lot, but I don't think there's any way around that.
2. Short of rolling my own tmsh output / ltm config parser, there are some silly grep/awk tricks in here. If you run it in your environment and it screws up due to more levels of nested brackets, etc - let me know and I'd be happy to try to update it.
3. Only default pools are being looked at - if there's an irule or something that steers traffic, the script won't pick that up.
Here's an example output (names/IPs changed from my work environment):
./map.sh 192.168.0.10
Searching for 192.168.0.10 in LTM config ...
pool_web_servers (session monitor-enabled, state up)
--> vs_website01 (192.168.1.80 on port 80/tcp)
--> vs_website01-https (192.168.1.80 on port 443/tcp)
pool_ssh_servers (session monitor-enabled, state up)
--> vs_login_pool (192.168.1.22 on port 22/tcp)
Anyway, of course standard disclaimer applies (ymmv, "no warranty or guarantee of fit for any purpose is expressed or implied", don't run this in production without testing it in your environment first!! yadda yadda yadda ... ) - hope this is helpful to someone out there!
-Josh
!/bin/bash
Eventually, some nicer input handling would be great
: ${1:?"The first argument of this script is the IP address to find. Example: ./map.sh 192.168.1.1"}
IP=$1
Just in case you want to modify the invocation of tmsh
TMSH='tmsh -q';
echo "Searching for $IP in LTM config ... ";
This outputs Node->Pool->VS ... opposite of the GUI
for POOL in `$TMSH list /ltm pool one-line | grep $1: | awk '{print $3}'`; do
Get session and state info from the pool listing
session=`$TMSH list /ltm pool $POOL members | grep -A30 "address $1" | grep -m 1 -B30 "}" | grep "session " | awk '{print $2}'`
state=`$TMSH list /ltm pool $POOL members | grep -A30 "address $1" | grep -m 1 -B30 "}" | grep "state " | awk '{print $2}'`
Spit out info on the pool membership
echo " $POOL (session $session, state $state)";
Now go trolling through all the VSs for any one that has this pool as its default pool
for VIRTUAL in `$TMSH list /ltm virtual one-line | grep $POOL | awk '{print $3}'`; do
Get the IP address and service port
destination=`$TMSH list ltm virtual $VIRTUAL | grep destination | awk '{print $2}'`
F5 uses names of ports from /etc/services instead of numbers ...
I personally find this super annoying.
Figure out if it's tcp or udp (or sctp)
protocol=`$TMSH list ltm virtual $VIRTUAL | grep ip-protocol | awk '{print $2}'`
Split out the IP ...
vs_ip=`echo $destination | cut -f1 -d':'`
... and the name of the service port
vs_svc_name=`echo $destination | cut -f2 -d':'`
Now find it in /etc/services
vs_svc_port=`grep $protocol /etc/services | awk '$1 == "'$vs_svc_name'" {print $2}'`
Finally, spit out the information about the VS
echo " --> $VIRTUAL ($vs_ip on port $vs_svc_port)";
done;
echo;
done
25-Jul-2016 00:11
(tmos)list ltm pool | grep -b 20 x.x.x.x | grep ltm pool
19-Jul-2017 14:24
Is there any way to find out a member in GTM pools?
04-Oct-2017 08:12
Found this thread looking for the same data. I'd like to clean up unused nodes, as we move out of a data center. None of these submitted solutions return any data for me.
04-Oct-2017 14:21
Hi, you could try to generate a QKVIEW and upload it to https://ihealth.f5.com, so, you'll get check diagnostics including unused objects.
Regards.
24-Jul-2018 21:36
tmsh list ltm pool one-line | grep xxx.xxx.xxx.xxx | awk '{print $3}' > test.txt
19-Jan-2020 20:36
I make some modification on the basis, and output the vs-pool-pool_member, like this
[root@lab-1:Active:Standalone] config # sh network-map-output.sh 10.128.1.245
Searching for 10.128.1.245 in LTM config ...
dns_listener (10.128.10.230 on port 53/udp)
Pool: bind_server_pool
---> 10.128.20.11 on port 53
---> 10.128.20.12 on port 53
---> 10.128.20.13 on port 53
p80_virtual1 (10.128.10.20 on port 80/tcp)
Pool: p80_pool_11-12
---> 10.128.20.11 on port 53
---> 10.128.20.12 on port 53
p80_virtual2 (10.128.10.30 on port 80/tcp)
Pool: p80_pool_13-14
---> 10.128.20.13 on port 53
---> 10.128.20.14 on port 80
vs_https_need_to_del (10.242.136.15 on port 443/tcp)
Pool: p80_pool_11-12
---> 10.128.20.11 on port 53
---> 10.128.20.12 on port 53
vs_policy (10.128.10.201 on port any/tcp)
Pool: iRules_pool11
---> 10.128.20.11 on port 53
vs_temp_need_to_del (10.242.136.1 on port 4488/tcp)
Pool: bind_server_pool
---> 10.128.20.11 on port 53
---> 10.128.20.12 on port 53
---> 10.128.20.13 on port 53
============================================================================================
tmsh_mod="tmsh -q"
echo "Searching for $1 in LTM config ... "
vs_list=$( $tmsh_mod list ltm virtual one-line | grep " pool" | awk '{print $3}')
for vs in $vs_list
do
vs_protocol=$($tmsh_mod list ltm virtual $vs | awk '$1=="ip-protocol" {print $2}')
vs_ip_port=$($tmsh_mod list ltm virtual $vs | awk '$1=="destination" {print $2}')
vs_ip=$(echo $vs_ip_port | awk -F: '{print $1}' )
vs_port_name=$(echo $vs_ip_port | awk -F: '{print $2}' )
vs_pool_name=$($tmsh_mod list ltm virtual $vs | awk '$1=="pool" {print $2}')
if [ "$(grep $vs_protocol /etc/services | awk '$1=="'$vs_port_name'" {print $2}')" ]
then
vs_port=$(grep $vs_protocol /etc/services | awk '$1=="'$vs_port_name'" {print $2}')
else
vs_port=$(echo "$vs_port_name/$vs_protocol")
fi
echo "$vs ($vs_ip on port $vs_port)"
pool_member_addr_list=$($tmsh_mod list ltm pool $vs_pool_name | awk '$1=="address" {print $2}' )
echo " Pool: $vs_pool_name"
for pool_member_addr in $pool_member_addr_list
do
pool_member_port_name=$($tmsh_mod list ltm pool $pools_pool | grep $pool_member_addr | grep addr -B1 | awk -F: 'NR==1 {print $2}' | awk ' {print $1}' )
the_name_map_to_port_requirement=$(grep $vs_protocol /etc/services | awk '$1=="'$pool_member_port_name'" {print $2}')
if [ "$the_name_map_to_port_requirement" ]
then
pool_member_port=$(echo $the_name_map_to_port_requirement | awk -F/ '{print $1}')
else
pool_member_port=$(echo $pool_member_port_name)
fi
echo " ---> $pool_member_addr on port $pool_member_port"
done
done
16-Jun-2020 10:01
output is giving whole network map. is it possible to filter only one virtual server details?
13-Jul-2020 01:21
Taking out the loop, will filter the specify the vs.
13-Jul-2020 01:22
Taking out the loop, will filter the specify the vs.