Forum Discussion

Frank_Sweetser_'s avatar
Frank_Sweetser_
Icon for Nimbostratus rankNimbostratus
Apr 15, 2008

GTM DNS responses not reflecting pool availability

I've got a pair of 3410 units, each with GTM enabled. I've got the LTM configuration on each working, but I can't get GTM to work the way I think it should.

 

 

LTM on each unit is configured with a pool of servers. GTM is then pointed at both LTMs, and I have wide IP everything is under.

 

 

When I send DNS queries for the name of the WIP, it happily returns back both of the LTM virtual servers. If I update the GTM pool, removing and adding virtual servers discovered from the LTMs updates the DNS responses that GTM sends out.

 

 

The problem I'm running into, though, is that when the virtual servers on an LTM is disabled (either by manually taking down the real servers, or just disabling it in the LTM config), this is not reflected in the GTM DNS answers. Looking at the GTM status does accurately reflect the fact that one of the LTM virtual servers is disabled, but it keeps returning both LTM IP addresses.

 

 

Am I correct in assuming that the DNS answers returned by GTM should reflect what resources are actually available? Or is there something else I've completely missed here?
config
design

7 Replies

Sort By
  • James_Thomson's avatar
    James_Thomson
    Icon for Employee rankEmployee
    Apr 15, 2008
    If it is returning both answers at the same time, then that might mean that the requests are going back to Bind. do you have a GTM listener defined?

     

    What are your load balancing methods?

     

    Make sure at least one of the first 2 is a static method like round robin or ratio.
  • JRahm's avatar
    JRahm
    Icon for Admin rankAdmin
    Apr 15, 2008
    There is also a Verify Virtual Server Availability checkbox on the pool settings, if this is unchecked, it will hand out the addresses regardless of vip state.
  • Frank_Sweetser_'s avatar
    Frank_Sweetser_
    Icon for Nimbostratus rankNimbostratus
    Apr 15, 2008
    Aha! A gold star to j.thomson - I was missing a listener on the self IP address on each GTM. I saw in the docs where it said that GTM will answer DNS queries for itself even without a listener, but didn't understand that a listener was required for the dynamic behavior. It's all now working perfectly =)

     

     

    Thanks to all for the quick responses!
  • Deb_Allen_18's avatar
    Deb_Allen_18
    Historic F5 Account
    Apr 17, 2008
    Awesome, guys, thanks to all of you for chiming in. All 3 responses are valid conditions offer incredibly helpful advice when LTM->GTM dependencies seem to be ignored.

     

     

    fs: If you feel the documentation is lacking, it's really helpful if you contact F5 Support & open a case requesting a doc clarification. You can do it in the support portal online if your AskF5 ID is enabled for it: Click here

     

     

    /d

     

  • GHUG_105220's avatar
    GHUG_105220
    Icon for Nimbostratus rankNimbostratus
    Aug 25, 2011
    We had a similar scenario so thanks for the fix! We have two active/active GTM/LTM combo F5's that we have our internal databases/apps on and when we would add the secondary F5 IP in the GTM's wide pool we would experience DNS flipping back and forth between the two (sending both IP's with primary/secondary changing places each nslookup). We had to create a GTM listener on each with their on respective IP's then we were able to have both IP's in the GTM wide pool and experienced no dns issues.

     

     

    Thanks
  • kev_245_28249's avatar
    kev_245_28249
    Icon for Nimbostratus rankNimbostratus
    Jun 21, 2012
    In regards to Virtual Server Availability - I find the information fairly lacking on how this really works.

     

     

    If the Virtual Server has a 5 minute health monitor timeout and its functionally down (but not timed out), I gather the Verify Virtual Server availability only pertains to the state of the vip not testing the actual functionality of the vip and reacting sooner than 5 minutes.