I have LTM 10350v with two images installed 126.96.36.199 and 12.1.2 (currently 13.x is running)
I am seeing some issue with 188.8.131.52 so thinking to switch it to 12.1.2 for testing, so question is do it create any issue when we go back to older image, like it will break existing configuration or HA configuration etc? (do i need reconfigure everything again?)
Do i need to re-activate license also?
Hope it helps!
Reason i asked Activation question because this box is in lab and nobody has any idea about licensing, Let's assume we don't have active support in that case am i going to be in trouble to switch boot image? I don't care about configuration because its in LAB.
just for information - did you checked release notes of newer versions of 13 regarding your issue?
Currently available ist
I am seeing very odd behavior, I am doing load-testing on F5 and found SNAT pool sending warning "inet port exhaustion", i am just keep adding IPs in SNAT pool and still getting error, i have added 15 IPs in pool and i have almost 500k Users so based on math i have enough port capacity. I did dump connection table and found each SNAT only hitting 20k around ports so its not anywhere close.
So trying to troubleshoot that issue and i check release and i didn't see any indication of bug or issue.
something like that?
20569-1 : BIG-IP Source IP cmp-hash setting is distributing traffic unequally
After a period of time, Inet port exhaustion error messages begin to be reported, and traffic starts to fail:
crit tmm1: 01010201:2: Inet port exhaustion on <ip_address> to <ip_address>.
1. BIG-IP system uses sock or virtIO drivers; cmp-hash is src-ip.
2. Both VLANs are set to Source Address CMP Hash configuration.
3. Pool members are distributed to different TMM cores based on the VLAN configuration.
4. Traffic is load balanced to the pool member mapped to the other core.
The system reports Inet port exhaustion error messages, and traffic starts to fail.
This is interesting, In SNAT statistics i am seeing its equally spreading traffic across all SNAT pool members.
In above article they are saying "The cmp-hash src-ip setting has been improved to avoid unequal distribution." so how do i configure cmp-hash src-ip setting ?
My current model F5 model is 10350 running 184.108.40.206 version of software and this guys having issue related SNAT.
If i am running same load-test on F5 model 10200 running 220.127.116.11 and i not seeing any issue. do you think it issue of 13.x.x.x ? That is why i want to revert my image to verify.
It stopped logging in /var/log/ltm but now when i running my load-test with 500k TCP connection with 800/s rate then some of my tcp connection not getting through and client saying failed to connect.
I have tried bunch of new TCP profile, buffer adjustment and all short of thing but no improvement but then i decided to add more SNAT ip in pool and that works i didn't get error of connection failure so i thought let me load more tcp connection so i start my load-testing with 600k tcp connection with 800/s rate and that test failed again with connection failure, so trying to understand why SNAT source port starving? I have check connection table and its not using all 64k ports but still something somewhere not right. Do you have any clue to trace this kind of issue? I may enable TCP reset cause logs and see..
We have 4 mongooseIM server behind F5 and bunch of xmpp clients sending xmpp traffic like text messages etc.. to simulate production workload. my goal is to run 1 million clients (tcp connection) with 1000/s rate.
(i have run same workload without F5 and its successful like all client sending traffic directly to mongooseIM nodes using scripted way to load-balance connection but my goal is to run them behind F5 for many reason.
We have all TCP application no more UDP or SIP style traffic which need special care of source port preservation.