F5 DNS Generic Host
I am trying to create a few generic hosts for a POC, but having issues with them being monitor failed. I created a new server named RANCHER-POC-11 and gave it an ip address of 10.4.65.11, this has a monitor of https assigned to it. I then created a virtual server with the same ip address and port 443 as well as the https monitor. The Server and Virtual Servers are both red triangles. I performed a packet capture and I don't see that the gtm is even attempting to monitor. I put a specific route in the network and pointed to the GW and now if I initiate a connection from the CLI I see logs in our monitoring but only if I do the connection manually. This is the first generic host we have tried to deploy as the rest of the virtual servers/pools are pulled from the LTM's and this service is not behind the LTM. Any suggestions would be appreciated. Thanks, Joe
DNS Request to VS?
Hello, we found on our Firewall lots of DNS-Requests from the floating IP to some VS (with ASM-Policy). Now we want the Firewall to only allow DNS-Requests to the known DNS-Servers. Question: is this normal behaviour? The BIGIP has DNS-Resolver configured. Where can I check the Config-Utility? Thanks for any hint. Karlcross platform migration issue
Hi, we want to migrate the config from iseries 4K to rseries 5k . The current software version on iseries is 13.x.. I tried to run bigip v15.x on rseries, then export the config from iseries and import it into rseries, but not successful, there were some errors. Can someone please advise how should I do to make the migration successful? Thanks in advance!SNI Sites not taking correct certificate.
I have configured one VIP with two certificate aks.test.com aks4.test.com On SSL profile for aks.test.com i have enabled SNI feature and aks.test.com is working fine taking correct certificate (aks.test.com). but aks4.test.com having not secure error on browser and taking the certificate of (aks.test.com). Could someone please help what could be the issue in this case.
UCS backup not loading Big IP DNS pool
I was planning to upgrade Big IP DNS currently in version 13.x to version 15 and then to version 16. I was labbing up the upgrade before doing it on the prod device. While trying to restore the UCS backup file to the lab environment same version (version 13) no error was displayed but the pool and rest of the configuration did not load up. The only configuration that was restored was self ip , hostname, vlans , and the listerner configuration. What am I missing ? Any suggestion or help would be appreciated.Big IP DNS Failover
Hello people I am new to Big IP DNS world. We have two Big IP DNS currently synchronizing across 2 DC. Big IP DNS is used in a DNS delegation architecture making use of sub domains. All of our request goes to our internal Domain Controller/DNS and then it has our NS as well as CNAME record pointing towards Big IP DNS. I was trying to test whether or not the Big IP DNS failover would work if one of the Big IP DNS completely goes offline before we plan for our upgrade. Previous employee who did all the work has left and no one has any idea if it would work. The tcpdump capture shows that both of the DNS is receiving DNS traffic and also the stats from the F5 itself shows the increment. What would be the best way to test that the redundancy? Forcing the primary DNS as offline?GTM rule should resolve the host which are reachable.
Dear Friends, we are using F5 dns and configured wide ip. when request arrives to resolve ,request hit to wide ip & wide IP has irule attached to it.which is giving IP against requested domain. Wide ip : www.xyz.com Attached Gtm rule to above wide IP when dns_request { host 1.2.3.4 #host 5.6.7.8 } We are changing the host manually whenever it required to change. Now we have requirement where F5 dns should monitor this host in gtm rule and resolve to the host IP whichever is reachable rather than manual change. Could any one help here please. thanks,why the gtm probing result is not shown on debug log?
hi ,we encounter some gtm wideip pool monitoring issue. then I tried to turn on the debug for gtm logging. The log captured for pool member status monitoring is shown as below only. There is no result about the probing, why? Can someone please advise on it? thanks in advance. debug gtmd[6034]: 011ae039:7: Check probing of IP:Port 10.50.62.252:8833 in DC /Common/DC-NY debug gtmd[6034]: 011ae03b:7: Will probe 10.50.62.252:8833 in DC /Common/DC-NY