F5 BIG-IP LTM pool no outbound traffic
Hello, I am trying to setup a new virtual server (port 80) on F5 BIG-IP. I can ping the VIP and all its member IP. I can ping to the self IP of the F5 from the member server. Service is http and it's running normaly when I'm accessing the server directly, but it gave me a blank page if I access it using the VIP. When I check the pool statistics, it shows bits & packet IN but no bits & packets OUT. I am totally new into this BIG-IP thing, can someone please guide me as clear as possible of what I should do to get this working? Thanks in advance :)
F5 | LTM | Server Hello packet is not coming
Hi Team, Hope you all are doing great! i have an issue, where i have F5 LTM VS (Standard - SSL Passthrough (no client/server SSL profile). Issue - URL is not accessible, getting error message site can't be reach. Bypassing LB it works properly. I took packet capture and observed that TCP Hnadshake is happeing but SSL handshake is not happening. Client hello is coming but Server hello is not happenning and no error message in packet capture. Please let me know if issue is with F5 or not. Regards, RAQSLB VIP Is Not Responding to Syn Packet from Client
Hi Team, Hope all of you are doing good. I have below issue :- We have pool of clients (set of proxy server, 1.1.1.1 - 1.1.1.6) , F5 is getting traffic from all Client IP and responding back, except for IP 1.1.1.5. From 1.1.1.5, traffic is getting initiated but its not reaching F5. We can see traffic generated from Client reaeching to firewall and then switch but not seeing same time at F5. Sniffer at firewall says that F5 is not responding for syn packet, but how F5 will reply if it is not seeing SYN packet? Please help to look into this from F5 perspective. Regards, RAQS
Health Monitor for 3389 port Pool members
Hi All, I have VIP configured for port 3389 and the pool members are also configured with port number 3389 [TCP]. I need to configure customized healt monitor for the pool members, can someone plz help me what should be the send and receive string and all other settings. As of now I am using default tcp health monitor. Regards, Ashish Solanki
Azure App Services and routing,protecting with F5
Is it possible for Azure F5 LTM module to load balance or route traffic to Azure Web apps? I have web app http://xyz.azurewebapp.net and I want to route this traffic form Azure F5 LTM module www.mycompany.com. The reason for routing through F5 is to secure it and block unwanted url to be accessible by the public and also domain verification is not an option for us. Azure app gateway does this for us, want to see if F5 can do this. Any pointer is appreciated.Specifically target an inactive pool member
In our F5 LTM, we have a pool with a failover scenario: one pool member goes down, the other member is made active. What I would like to do is to be able to [somehow magically] access the inactive pool member through the F5. See, we are doing SSL termination at the F5 and the pool members are not listening on port 443. Therefore, I cannot test an inactive (or lesser priority group) pool member completely. I can set my hosts file to go directly to the inactive pool member, which responds as it should, but I cannot hit it via HTTPS because that transaction is handled through the F5. I have no idea how one would accomplish this, but I'm hoping it's possible because we use this as a deployment scenario sometimes: prepare the inactive member with new content, then bring down the primary member.Installing Backup
Hi All, I need to import UCS backup from an F5 VM which is running on ver15.1.2.1 to a new VM which is running on ver12.1.5.3. Is it possible or I have to do an upgrade on new VM to make the version same on both? I know that I need to take master key of the existing VM while importing the backup? What should I do about the existing license in the UCS file --> running this command will work "load sys ucs no-license" or I have to run any other to command to make this work? What other steps are need to import the UCS file successfully? How to confirm whether the complete config is imported or not? Sorry for asking so may questions, I tried searching for all these but no help. Thanks, Ashish SolankiTrying to implement forward proxy script v3.2
I'm trying to implement the forward proxy script v3.2 and need some pointers please. I have a HA pair of LTMs (vCMP guests on VIPRION 2400s technially) with two internal vlans and two external vlans. Default routing is to a FW on one of my external vlans. I'm very new to using iRules. I'm comfortable with pools, persitance settings, monitors, standard ordinary stuff you might say. What port do I set my virtual setver to listen on? Will my LTM traffic leave via the interface pointing towards my default gateway? How do I force it to use a SNATpool IP on that vlan? Thanks, Mark
