GTM DNS
14 TopicsWhat is the best practice to deploy single Tenant in F5 rseries?
Hi, we are going to deploy new rseries 5k with single Tenant. What is the best practice to setup? I plan to setup like below, can someone please advise whether it is correct or not? And I have question on auto disk space and memory allocation. Thanks in advance! Allocate all the disk space to this large single tenant Allocate all the memory to this single tenant within the tenant, set "Large" to "Mgmt" module for the rest modules: LTM, GTM , ASM , set "Normal" under Resource Provisioning". Seems the system automatically allocate disk space and memory to each module. Based on the amount of disk space and memory allocated to these modules, seems there are still a lot spare diskspace and memory. Will these modules automatically share the rest spare diskspace and memory when necessary?14Views0likes0CommentsAny issue if setting up LTM and GTM/DNS on the same F5 Appliance Cluster?
Hi, we have a pair of F5 appliance, and plan to setup HA cluster. After HA configuration and both appliance in sync, LTM works well as active/standby mode as expected GTM delivery listener is active on active F5 appliance as expected, the dns queries are routed to the active appliance GTM wild-ip pool members are shown "down" state on Standby appliance. The status of Data Center/Links are also shown "down" on the Standby appliance. Is it normal? Both F5 appliances are configured under the same GTM sync-group with different external physical links. Can someone please advise? Thanks in advance!14Views0likes0Commentssome questions on device Trust Certificate?
hi, I have two questions on device trust certificates (client cert). why there are duplicate certificates on Device Trust Certificate list? I saw duplicate gtm device certificates in LTM devices. is it true that only gtm device certificate is sent to ltm device, and reverse "no" -- no ltm device certificate in gtm Device Trust Certificate list? I checked out gtm and ltm devices for our different regions, no ltm device certificate is on any gtm Device Trust Certificate list. Can someone please help advise, thanks in advance!Solved50Views0likes5CommentsRetrieve GTM pool member addresses (Bigrest)
A wide-IP has a pool of servers that are virtual-servers on an LTM. I would like to retrieve the pool member addresses of the virtual servers used in the wide-IP pool using the Bigrest Python library. wide-ip = site.com Pool Name = site_pool Pool Member A = site_a_vs (server = ltm_a) Pool Member B = site_b_vs (server = ltm_b) I can load the wide-IP which provides a poolReference. I can then load the pool, which provides a membersReference. The membersReference provides a serverReference (the LTM) and the vs name. From here, I can load all virtual servers on the server provided by the serverRefence, but unsure how to retrieve only the virtual servers that are relevant to the wide-IP. There is no virtualserver ID provided by the membersReference or ServerReference.62Views0likes1CommentPriority group activation on GTM.
Hello All, I need to configure active standby configuration on GTM pool level, only one VS should be UP and second should be standby if one vs is down then traffic should pass to another VS and i can see there is one option Minimum-up Members but i do not know how to use it as a priority group activation on GTM level. If any one has any article or config suggestion please share. Many thanks in advanced for your time and consideration.46Views0likes2CommentsWhen user goes through LB the server page has stripped information
I have created a pretty simple round robin load balancing for a user with three servers. As a part of this I also have DNS LB in place that sends the traffic to two VIPs that are connected to the three nodes in a pool I have created on my LTM F5. User accesses the LB DNS URL I provide via Https://<>.com > VIP > Pool > Nodes. There is a certificate applied to the clientssl and serverssl profiles attached to the VIPs. The user is able to get to their backend servers/nodes when going through the load balancer, but we are coming across an interesting issue. When the user goes through the F5 the server dashboard page they usually see is stripped of information on that dashboard. Typically, there would be tiles shown on the server dashboard, but it is just the basic UI and none of the tiles. When the user goes directly to their server, all the information/tiles are shown as normal. I have never experienced this problem before and am not sure how to prove out the F5 is causing the issue or how it is happening. Any insight would be greatly appreciated! *Attached file shows what I'm explaining.69Views0likes6CommentsGTM pool is OFFLINE even if pool members are UNKNOWN
Hi, Maybe someone can clarify me this situation. I didn't found it in documentation. generic host (with no monitors) has two virtual servers (also no monitors here). the state of server and virtual servers is unknown (that expected). state of the pool is OFFLINE (why?? this is not clear for me), but (all two) members are UNKNOWN wide IP is OFFLINE because poll has no available members (members are unknown, not unavailable) dns response to wide ip returns two IPs (IP adresses of both members). it's ok in this case, because return code on failure is (by default) disabled when I enable 'return code on failure', response is empty Note: when one member is disabled (or down based on temporary monitor), dns response return only one IP - IP of the unknown member. That's correct, but pool state and wide ip state are offline. My question is: Why is pool state OFFLINE when pool members states are UNKNOWN? I think he should be unknown. When the same situation occurs on LTM, state of pool is unknown, not offline. Does GTM behave differently?? TMOS version: 17.1.1.3 Here is simple test configuration: # gslb domain (wide ip) gtm wideip a /testTenant/testApp/test.my.local { pools { /testTenant/testApp/testPool { order 0 } } } # gslb pool gtm pool a /testTenant/testApp/testPool { alternate-mode global-availability fallback-mode none load-balancing-mode global-availability members { /Common/server1:vs1 { member-order 0 } /Common/server1:vs2 { member-order 1 } } } # gslb servers gtm server /Common/server1 { datacenter /Common/testDc devices { 0 { addresses { 10.1.1.1 { } } } } prober-fallback none product generic-host virtual-servers { vs1 { destination 10.1.1.11:0 } vs2 { destination 10.1.1.12:0 } } }Solved48Views0likes1CommentGTM answer based on pool member status
Hello, I'd like to configure GTM to answer FQDN request with specific IP address in answer based on status of another GSLB pool member. Example: I have two GSLB pools: pool1 (there are members located in datacenter1) and pool2 (members located in dc2). Required answer to FQDN e.g. 'service.domain.com' is IP1 when pool1 is up, or IP2 when IP2 is up. IP1 and IP2 are not IP addresses of pool members pool1/pool2 but statically defined on GTM (I'm not sure where). I can't use fallback IP (because it is not reflecting pool availability status) Is it possible to configure GTM based on above example?82Views0likes2CommentsF5 GTM Upgrade in Viprion with LTM
We have to plan a Viprion Software upgrade. Suppose we have two data center (say A and B) and 4 Viprion. 2(A1,A2) dedicated for one data center and 2(B1,B2) dedicated for other. A1 contains - a1(LTM), a2(LTM),a3(LTM) and a4(GTM Internal) A2 Contains - a5(LTM), a6(LTM), a7(LTM), a4(GTM External) B1 contains - b1(LTM), b2(LTM),b3(LTM) and b4(GTM Internal) B2 Contains - b5(LTM), b6(LTM), b7(LTM), b8(GTM External) Now we are planning to upgrade to both Viprion pair in two different weeks. But GTM is creating issue. Note - a4 and b4 are stand alone and synced. Similarly a8 and b are stand alone and synced. My question - If I plan upgrade A1 in first week, I have to upgrade a4 and a8. In that a4 and b4 will be in different version and a8 and b8 will be in different version for one week. I just wanted to know, will there be any issue if GTM pairs are in different versions for one week(Note pairs are standalone but synced). Will there be any kind of traffic of conflict issue? Or any suggestion how to plan?52Views0likes1Comment