Nimbostratus
I encounter problem using vlan group (bridge mode, translucent, bridge all traffic, bridge in standby).
2 LTM are connection to 2 cisco switches with 2 vlan, while internal hosts have
2 NIC connecting to these 2 cisco switches too.
The standby LTM2 cannot ping a host in internal vlan while active LTM1 can, is it normal? why?
Cirrocumulus
... I have active and standby in v. 9.3.1 and use VLAN group and have a problem with sync
here is detail ....when use command ping peer
Active will lost packet around 90% (have problem)
Standby will lost packet around 10% (no problem)
So when Active want to sync to peer .. Sync is failed
when I see ARP table .... In standby unit I see MAC and vlan (internal) correct
but in Active unit I see MAC correct but Vlan is external ???
So I see when Active ping peer ... it's send packet through vlan external (actually should be internal) but problem is IP (both primary self and peer self) is in same address space
How to work out?
Thank you in advance
Cirrocumulus
Standby when ping peer http://upic.me/i/8l/copy2.png
arp table (crop only self active and standby) http://upic.me/i/z9/otarp.png (41.44 is self standby unit , .41.40 is self active unit ) *(this is in same address space )
this config vlangroup
vlangroup DMZ-Groups {
tag 1
transparency transparent
bridge in standby disable
member DMZ-VLANs-Inbound DMZ-VLANs-Outbound
Employee
sol11812: Failure to specify non-floating self IP addresses in the VLAN group Proxy Exclusion List may cause misdirected monitor traffic
http://support.f5.com/kb/en-us/solutions/public/11000/800/sol11812.html
CirrocumulusBIG-IP version 9.3.1 is in this known issue list , so i can't use Proxy Exclusion List
SOL10418: The BIG-IP system does not honor the Proxy Exclusion List
http://support.f5.com/kb/en-us/solutions/public/10000/400/sol10418.html?sr=28120710