vCMP Bridged Network Management Access

Hi,

We have a vCMP Host with its in-band management interface in network AA.AA.AA.AA/AA

A single vCMP guest is created and deployed with the default Bridge network mode for management access with an IP from network AA.AA.AA.AA/AA

We have also created a number of virtual servers with Self-IPs in network BB.BB.BB.BB/BB for the VIP side and CC.CC.CC.CC/CC for the node side. Therefore we have had to create an IPv4 default route for TMM interfaces pointing to the gateway for network BB.BB.BB.BB/BB for client return traffic and specific routes via network CC.CC.CC.CC/CC to the node networks. East peasy so far.

(VIPs/Public networks)

Network BB.BB.BB.BB/BB

|

|

|

Self-IP

Self-IP

|

|

|

Network CC.CC.CC.CC/CC

(To nodes)

Since adding that IPv4 default route using a TMM interface our management access to the vCMP guest IP in AA.AA.AA.AA/AA has ceased and luckily we can still access the F5 on it's TMM interface self-ip in BB.BB.BB.BB/BB network. Interestingly the F5 Viprion no longer provides an arp entry on the switch/router via the in-band interface in network AA.AA.AA.AA/AA, which was the case prior to adding the default route.

It was my understanding from SOL13284 that management routes, namely the management gateway setup in platform section is preferred over TMM routes:

"Management routes are routes that the BIG-IP system uses to forward traffic through the management interface. For traffic sourced from the management address, the system prefers management routes over TMM routes, and uses the most specific matching management route. If no management route is defined or matched, the system uses the most specific matching TMM route."

We obviously cannot setup specific management routes in the vCMP guest as that guest does not have a self-ip or vlan in the management network and relied upon the Bridged network mode so SOL13284 does not seem to directly apply to vCMP Host/Guest scenarios.

Appreciate any help, thanks in advance.