GTM WIDE IP IRULE
Hello ALL , I working on one project where I need to failover between Wide IP's across two geographical location . One Wide IP ( XYZ-APAC.production.com) sits in Australia which polls TWO DC's DC1 and Dc2 . The Other Wide IP ( ABC-AMER.production.com)sits in AMERICA which Also Polls two Dc's DC1 and DC2 . The requirement is to failover to the AMERICA Wide IP if all pools in AUSTRALIA goes DOWN ( or DC's goes DOWN ) and VICE- VERSA . I never developed an irule for DNS . reading through the documents , I found below irule BUT no sure if this will work with my requirement . when DNS_REQUEST { # Changed = = 0 to < 1 for CR100063 / SOL10137 if { [active_members pool_test] > 0 } { cname "XYZ-APAC.production.com" } else { cname "ABC-AMER.production.com" } } Can I please request to get some guidance on this ? Thanks
Is it possible to use a WideIP to load balance connections to Mail Server (MX Records)
A customer implementation requires load balancing incoming connections to their hosted websites, that works ok. But the problem is with the mail, is it possible to configure F5 to load balance DNS responses between 2 MX records? And if not, what is the best way to load balance incoming mail connections (SMTP) not Web Mail. Thanks in advance
GTM Sync or Device Management Sync?
I have an old pair of devices on HA in version 11.6.4, they don't have GTM module, but Link Controller instead. There's an issue that sometimes, suddenly, Wide IPs configuration is changed without any human intervention, and I think that is probably due that I have Device Management Sync in Manual, and also I have Link Controller Configuration Synchronization activated. So, my theory is that maybe I only need to have Device Management Sync configured, and Link Controller Configuration Synchronization needs to be disabled in order to prevent issues with automatic GTM (Link Controller) sync. I'm not sure if Device Management Sync syncronize the bigip_gtm.conf file or this only happens with GTM (Link Controller) sync...
iRule to resolve DNS for GTM (wide-ip if possible)
Hi I've server on cloud and want to try to use irule to resolve dynamic IP from cloud and return IP to user. I saw irule LTM can use RESOLVE:lookup and we can use it on Listener. But Is it possible to have the same function irule in wide-ip ? because if we attach irule on Listener, it will surely take more performance than wide-ip. Flow is When user send dns request for wide-ip "A" -> F5 resolve dynamic IP from cloud (it's hostname will be like ABCDEFG.cloud-us.com)-> F5 return IP to user. ps. due to some circumstance CNAME is not possible. Thank you
Wide IP and SOA query
Hi, That is probably obvious question but I am not sure if I am getting things right. All related to 13.1.0.6 version. Setup: Wide IP: created Automatically ZoneRunner Zone wip.exmaple.com creted with: SOA NS A for DNS profile with: Only GSLB enabled Unhandled Query Actions: Reject When performing A query for answer with correct IP returned. When performing SOA query for wip.exmaple.foo reply with REFUSED status returned. Only way I figured out to make SOA query work is: Unhandled Query Actions: Allow Use BIND Server on BIG-IP: Enabled I wonder if above is really only way to have SOA query working? Are SOA and NS RRs created just because bind zone file db.external.wip.example.foo. format requires it and those RR are not really necessary for any real life scenarios? Sure this is just W2K8 implementation but to create delegation (using wizard) without error for configured NS (for wip.example.foo subdomain) SOA query has to work. That is not big deal because even if there is error in wizard, name resolution is working. Still I am a bit curious if lack of ability to answer SOA query can be important? PiotrWide IP and SOA query
Hi, That is probably obvious question but I am not sure if I am getting things right. All related to 13.1.0.6 version. Setup: Wide IP: created Automatically ZoneRunner Zone wip.exmaple.com creted with: SOA NS A for DNS profile with: Only GSLB enabled Unhandled Query Actions: Reject When performing A query for answer with correct IP returned. When performing SOA query for wip.exmaple.foo reply with REFUSED status returned. Only way I figured out to make SOA query work is: Unhandled Query Actions: Allow Use BIND Server on BIG-IP: Enabled I wonder if above is really only way to have SOA query working? Are SOA and NS RRs created just because bind zone file db.external.wip.example.foo. format requires it and those RR are not really necessary for any real life scenarios? Sure this is just W2K8 implementation but to create delegation (using wizard) without error for configured NS (for wip.example.foo subdomain) SOA query has to work. That is not big deal because even if there is error in wizard, name resolution is working. Still I am a bit curious if lack of ability to answer SOA query can be important? Piotr
DNS Wide-IP "Priority" Pools or members?
I'd like to have a Wide-IP that always resolves to a particular LTM service, but in the event that service goes down, have it fail over to a Disaster Recovery Site. No load balancing back and forth, a straight "if A is up, Give answer=a, if A is down, give answer=B". In the LTM world I would look to a priority group setup to accomplish this. For Wide-IP, I can use a Last Resort Pool, but is there another way to fail over to a DR site that should be considered?
How To Tell When GTM Responds With iRule Address Or Fallback Address?
Out Enterprise DNS delegates A-Record responses for a particular Wide IP domain. My WideIP's Pool Member Fallback address is the default A-Record response. The WIP iRule contains the logic that if the DNS query is sourced from a particular address, a different A-Record is returned. How do I tell whether the WideIP is responding with it's Fallback IP address or with the address stated within the iRule? If I go to DNS>GSLB>Wide IP List> Select the Wide IP and go to Statistics, I do see Requests: Total 225 Persisted 0 A 155 AAAA 70 Resolved 155 Dropped 0 Load Balancing: Preferred 155 Alternate 0 Fallback 0 CNAME Res 0 Returned to DNS 11 Returned from DNS 0 I've also tried tcpdump -vv but the packets don't state what the GTM responds with, for the particular DNS queries. Thanks for any/all help! MikeGTM Listener with pool
Hi, I was under impression that VS working as GTM Listener with DNS profile options: GSLB: Enabled Unhandled Query Actions: Allow and Pool assigned (with some backend DNS as member). when receiving request matching configured Wide IP will answer directly. From my test (v13.0.0HF2) it looks like it's not the case, request matching Wide IP is still send to pool member. Is that by design, bug or I made some mistake in configuration? Piotr