connection
11 TopicsMySQL active connection never bleed off to other pool member
I am running galera MySQL behind F5 with performance Layer 4 type and i have setup 3 mysql node in pool member with Priority so only 1 mysql node will be used and other two will be standby. So everything was good but i found today when i shutdown Primary node which was active and i found my application break and when i have checked logs found: (2006, "MySQL server has gone away (error(104, 'Connection reset by peer'))") So solution was restart application, look like active member mysql connection not bleeding off to other pool member, what is wrong with my setup?1.5KViews0likes13CommentsConnection Reset a while after node offline
Hi, Setup: HTTPS virtual server with a pool, SNAT automap and OneConnect. Action on service down is reject, monitor is http result code checking. iRules (in order of precedence) Maintenance page Inserting X-Forwarded-For: and more header work, possible pool selection and HTTP::respond based on URI.. The issue: Suppose there is node01 and node02. I get cookie persisted to node01. When I shut down node01 and refresh the page, I get a connection reset. This is the same for about 10 seconds and then I get persisted to the new node. If I do not include the return in the maintenace irule, I get the maintenance page. Any ideas why it takes 10 seconds before I get persisted to the new node? When I assign an inband monitor, the first request will fail but subsequent ones will work. How can I make ANY request work? When picking reselect and max_reselect to 3, everything works. But is this ideal?310Views0likes1CommentUnable to SSH to F5 Loadbalancer via perl script
I am trying to connect to F5 load balancer through perl module Net::SSH2. I am unable to authentication error, whereas with the same credentials I am able to ssh to the device through putty. I have shared the Code and the error below for reference. Could somebody please help me with this. use Net::SSH2; $deviceipF5 = "x.x.x.x"; $username = "xx"; $encrPass = "xx"; my @deviceipF5List = split(',',$deviceipF5); if(@deviceipF5List ne 0) { foreach my $deviceipF5(@deviceipF5List) { my @deviceipF5List1 = split (':', $deviceipF5); my $ssh2 = Net::SSH2->new(); $ssh2->debug(0); $ssh2->connect($deviceipF5List1[0]) or die $!; $ssh2->auth(username => $username, password => $encrPass) or die "Unable to login \n".$ssh2->die_with_error; print "Connected to '$deviceipF5List1[0]' as '$username' \n"; my $channel = $ssh2->channel() or do { print "Unable to create channnel ssh channel to Device $deviceipF5List[0]";$ssh2->disconnect(); last;}; $channel->blocking(0); $channel->shell() ; print "SSH Success \n"; sleep(2); I have even tried to useauth_passwordinstead of auth but no Luck. Below is the error I am getting:Bad file descriptor at line 16 I tried removing $1 from line number 16 but it lead to another error:Died at line 16 Also, in the development environment, I'm able to login to the device and fetch output via this script, but not in the client environment.551Views0likes3CommentsCan someone take a look and make sure I understand this right about reverse proxy
Preface: Yes I know not a whole lot but I'm trying. If someone could just take a look at this and maybe it will help me find what piece I am missing. We have an internal server that needs to be accessed on the outside, but they don't want it actually touching the internet so we run it through the BIG-IP F5 LTM. The internal IIS has an internal IP and an external IP assigned. The DNS entry is bound to the External IP address. A lot of what I setup has been copied from a currently working site that utilizes this exact same process. From my understanding the connection "route" is as follows: Internet-->ExtIP-->F5virtualIP-->IntIP The External IP gets natted on the firewall to the F5 internal IP of the virtual server, and then the F5 virtual server is linked to the actual internal server IP. We have access rules in place to allow public access to the external IP as well as the F5 IP. There are NAT rules in place that *should* point anyone going to the external IP towards the F5 address, and then through that to the internal server. There's an F5 rule in place that redirects from http to https as well. Internally, on my work PC, I can navigate to the site via it's FQDN. Externally though, I get a Not Secure Site message(we haven't gotten the cert in place yet so that is expected), but then after a while of trying to load, we receive an ERR_CONNECTION_RESET page and it can't load. I feel like there is something I am missing but I just can't think of what it is. If anyone has any ideas I will be eternally grateful. Thank you in advance.611Views0likes2CommentsGetting active pool member connections using Python
If I want to see all of the client connections connecting to a pool member from the CLI I can do something like a "show sys connection ss-server-addr 1.2.3.4". I can also do this using Postman mapping to ";, but I cannot figure out how to do this via Python. Using Python if I try to connect to "bigip.sys.raw" I do not see a module called "connection" or anything similar. Does anyone know how, or have some sample code on how to accomplish this? Thanks!1.3KViews0likes10CommentsF5 as gateway cannot connect on 2nd attempt
Hi Guys, We have an issue with the server 192.168.1.10 that is connected on F5 (F5 is its gateway). So the scenario is When we connect on the server 192.168.1.10 port 80 it is successful When we connect on the server 192.168.1.10 port 80 it is NOT successful We are using same source server. Is there any possible blocking on the f5 side? By the way the source server is also under the F5205Views0likes1CommentDifference in VS connections versus Pool connections
Hi all, I am wondering the difference between the current connections on a virtual server versus the current connections on a pool. For example my http/https virtual server has 91 current connections while the pool only has 30. I was under the impression that these two values should be the same. Does this mean there are 91 users hitting this url, or 30? I am using a oneconnect profile on this virtual server, so does this mean that its more accurate to say we have 91 users hitting the url but they're sharing the 30 connections already open from the F5 to the servers on the back end? Thank you606Views0likes4CommentsMonitoring total connections on F5
Hello everyone ! I have a F5 and I would like to know how to show the number of connections i have on my pool/node in PRTG. My colleague successfully extracted OID and I could had a sensor throught "SNMP library" called "pool member stats tot conns" that , I guess, show me the total connections on a pool (or node?). After I have this result and I dont understand a single thing of what it shows me : link for a better view : http://www.hostingpics.net/viewer.php?id=489046tot.png Thanks in advance !815Views0likes7CommentsCount number of connection per server node member
Hi, would like to know if there are any tmsh cut command for the count of each node member hitting on the VIP. I knew the count number of connection per source ip which is below "tmsh show sys connection cs-server-addr VIP | egrep -v 'T|S' | cut -d: -f 1 |sort | uniq -c" i want to know what would i change if i needed to count per server node member. Your help would greatly appreciated!573Views0likes7CommentsBIG-IP and sharing connection on OS X
Hello, My Macbook running OS X 10.10 (Yosemite) is connecting well to a BIG-IP network with my Ethernet interface. What I would like to achieve is to share this connection through the WiFi interface. I'm trying to do it with the built-in functionality (System Preferences -> Internet sharing) using the "Thunderbolt Ethernet" interface as the source. Unfortunately all clients connecting to the WiFi does not have access to the vpn. Did someone already have this problem? Thanks.378Views0likes1Comment