Unable to SSH BIG IP F5 GTM
Hi, I have a F5 BIGIP GTM box. I am able to access its GUI. However I am unable to access it via SSH Via doing a SSH via Putty just a black screen appears and nothing else happens. Please if someone can suggest any solution I have checked and my IP address is allowed in the Allowable IP's for SSH2.4KViews0likes17CommentsMigrate part of GTM to another GTM
Hi, currently our GTM's have both test and prod config. We have buildup new test GTM's and want to migrate the test config (LTM's, Virtual servers, Pools, Wide IP etc) to the new pair. What is the suggested approach for this ? Is there any script that we could use ?Solved1.7KViews0likes2CommentsGTM - Topology load balancing failover when one pool is down
Hello All, I am looking for a solution to the problem that has been raised several times, but I do not find a confirmed solution. The situation I am in is described in the following post:GTM Topology across pools issue when one of the po... - DevCentral (f5.com) We have two topology records with the same source, but different destination pools, with different wights: SRC: Region X => DEST: Pool A, wieght 200 SRC: Region X => DEST: Pool B, Wieght 20 When Pool A is down the Topology load balancing for the Wide IP still selects Pool A which is down, and no IP is returned to the client. If the topology load balancing selection mechanism, is not going to take in the status of the destination pool and just stop on first match in its selection mechanism, then why have "Wieght" at all.I do no believe disabling "longest match" would help as this just affects the order the topology rules are searched, it woudl still stop with the first match. The often mentioned solution is to use a single pool with Global Availability load balancing, as mentioned in the post:GTM and Topology - DevCentral (f5.com). The problem I have is that Pool A and Pool B are pools with mulitple generic host servers. I cannot have a pool with all generic host in it as we want to memebers in each Pool are Active/Active and not Active/ Backup Many thanks, Michael1.6KViews0likes11CommentsGTM Wideip and pool persistence
Hi there , please help me understand the gtm wideip and pool persistence, gtm wideip persistence — this tells a specific user how long you will stick with the same pool member for dns queries gtm pool TTL: this tells the specific user, how often you would need to query the gtm for dns resolution, for instance, if I connect to a wideip and gets a pool member as response, 10.10.10.10, assume that I have enabled wideip persistence as 3600 s, and pool ttl as 15 sec, I will likely to get 10.10.10.10 for 1 hr, but for every 15 seconds a dns requests sends to wideip to see if the member is still active, is this accurate understanding? please confirm1.5KViews0likes4CommentsDNS: unlicensed (enabled) - not authorized
Hi guys, I am preparing to take exam 302, but I have a problem when I add the second virtual server to pool of WideIP, its disabled for "unlicensed (enabled) - not authorized". root@(gtm-stgo)(cfg-sync In Sync)(Active)(/Common)(tmos)# show gtm pool a pool_apache_http members ----------------------------- Gtm::Pool::A pool_apache_http ----------------------------- Status Availability : available State : enabled Reason : Available Load Balancing Preferred 26 Alternate 0 Fallback 0 Returned from DNS 0 Returned to DNS 0 Dropped 0 ------------------------------------------------------------- | Gtm::Pool Member: pool_apache_http:A vs_apache_GTD:GTM-Stgo ------------------------------------------------------------- | Status | Availability : unlicensed | State : enabled | Reason : Not Authorized | | Load Balancing | Preferred 0 | Alternate 0 | Fallback 0 -------------------------------------------------------------- | Gtm::Pool Member: pool_apache_http:A vs_apache_http:GTM-Stgo -------------------------------------------------------------- | Status | Availability : available | State : enabled | Reason : Available | | Load Balancing | Preferred 26 | Alternate 0 | Fallback 0 Im working with licenses of strongbox, and i have licensed and provisioned module GTM and LTM. sys::License Licensed Version12.1.5 Registration key Licensed On2020/04/06 License Start Date2020/04/05 License End Date2020/05/22 Service Check Date2020/04/04 Platform IDZ100k Active Modules APM, Base, VE GBB (500 CCU) () Anti-Virus Checks Base Endpoint Security Checks Firewall Checks Network Access Secure Virtual Keyboard APM, Web Application Machine Certificate Checks Protected Workspace Remote Desktop App Tunnel BT-VE, 1G () Rate Shaping SDN Services, VE DNS and GTM (250 QPS), VE SSL, VE Routing Bundle, VE ASM, VE DNS-GTM, Base, 1Gbps Acceleration Manager, VE Max Compression, VE AFM, VE DNSSEC GTM Licensed Objects, Unlimited DNS Licensed Objects, Unlimited DNS Rate Fallback, 250K GTM Rate Fallback, 250K GTM Rate, 250K DNS Rate Limit, 250K QPS DNS Rate Limit, 1000 QPS GTM Rate, 1000 VE, Carrier Grade NAT (AFM ONLY) PSM, VE show sys provision --------------------------------------------------------- Sys::Provision ModuleCPU (%)Memory (MB)Host-Memory (MB)Disk (MB) --------------------------------------------------------- afm0000 am0000 apm0000 asm0000 avr0000 fps0000 gtm105920 host1025820112772 ilx0000 lc0000 ltm1000 pem0000 swg0000 tmos8854242800 list sys provision sys provision afm { } sys provision am { } sys provision apm { } sys provision asm { } sys provision avr { } sys provision fps { } sys provision gtm { level nominal } sys provision ilx { } sys provision lc { } sys provision ltm { level nominal } sys provision pem { } sys provision swg { } Please your help, for continue studing.1.3KViews0likes2CommentsWhat IP's to use for DNS Listeners?
In another question on this forum, https://devcentral.f5.com/questions/f5-gtm-and-wide-ip, the poster asks if the Name Server records for his subdomain (.wip.) needed to use the self IP's of his F5's. The accepted answer is that, no, you use the DNS Listener IP's instead. However, F5's instructions for DNS Listener setup say to use the F5's self IP's to set the listeners up. So, through the transitive property of geometry (thank you, 9th grade), wouldn't the NS record, therefore, be the self IP's of the F5's? Any help is appreciated. Thank you, MickeySolved1.3KViews0likes6CommentsGTM Redundant pair Listener IP address
Hello All, Sorry for the basic question, but I find the deployment guides and implementation guides lasking some basic information. When deploying a redundant GTM pair, does the listener for the DNS queries use the floating IP address? When deploying a single GTM it is mentioned that we use a self IP, but for a redundant pair it does eplicitly say. Since the configuration is done on one GTM in the pair and synchronised to the other backup device, I do tno think a self-IP is going work. Can we use a IP from the subnet used for the LTM VIPs? This subnet is not on a directly connected VLAN, but is a subnet that is routed to the BIg-IP. Many thanks, MichaelSolved1.2KViews0likes2CommentsHelp with GTM load balancing with Cisco ASA AnyConnect
I haven't been able to find any documentation for guidance in configuring F5 to be able to do GTM for Cisco ASA AnyConnect RA-VPN. I'm trying to use our F5s to load balance our Cisco ASAv based AnyConnect SSL RA-VPN connections between two data centers.1.1KViews0likes3CommentsF5 GTM resolution issue
I have an issue with F5 GTM resolution, after using nslookup to check if I can resolve the name of the website, that I created as an A record using wildeIP on GTM, I see that I can receive the correct IP for my website but after i try to access the website through HTTPS it not opened,Solved1.1KViews0likes7Comments