Forum Discussion

ATS-James_14803's avatar
ATS-James_14803
Icon for Nimbostratus rankNimbostratus
Mar 19, 2014

No connection to nodes (new install)

I have a new install of LTM v11.5. I have VMWARE hosts connected to a Cisco switch. I have one interface on F5 connected to the switch with a VLAN configured and tagged however I can't connect to any of the nodes and the node will not come online on the F5. Any ideas to start troubleshooting? So far I have tried the interface associated with the VLAN as tagged and un-tagged with no success. The VLAN has the correct Self IP associated with it, the host server is in the same subnet as the self IP associated with the VLAN. I see the F5 interface connected on the Cisco switch. I can ping the host server from the switch.

 

application delivery
cisco
deployment
LTM

7 Replies

Sort By
  • Cory_50405's avatar
    Cory_50405
    Icon for Noctilucent rankNoctilucent
    Mar 19, 2014

    If you only have one vlan on the F5, then it should probably be untagged. Ensure that the switch port it connects to is setup as an access (not trunk) port.

     

    • ATS-James_14803's avatar
      ATS-James_14803
      Icon for Nimbostratus rankNimbostratus
      Mar 19, 2014
      Thanks. I have multiple VLAN's configured on the F5, each with a different tag of course. For some reason I cant get this VLAN to communicate. I have tried configuring the switch as both an access port as well as a trunk port with no success.
  • Cory_50405's avatar
    Cory_50405
    Icon for Noctilucent rankNoctilucent
    Mar 19, 2014

    You said you can ping the host servers from the switch. So there is an SVI defined on the switch. Can you ping this SVI from the LTM?

     

    • ATS-James_14803's avatar
      ATS-James_14803
      Icon for Nimbostratus rankNimbostratus
      Mar 19, 2014
      No I can not ping the SVI from the LTM. I receive Destination host unreachable.
    • Cory_50405's avatar
      Cory_50405
      Icon for Noctilucent rankNoctilucent
      Mar 19, 2014
      So your vlan is created, that vlan is applied (untagged) to the physical interface that connects to the Cisco switch. The interface that connects to the Cisco switch is showing up on the LTM and the Cisco switch. The Cisco switch port is set to access mode, and on the same vlan that your LTM interface is on. If all of these things are true, then you should be able to ping. If not, one of these things has to be incorrect.
    • ATS-James_14803's avatar
      ATS-James_14803
      Icon for Nimbostratus rankNimbostratus
      Mar 19, 2014
      I think I found my issue. The Cisco switch has a default configuration, all ports are in VLAN1. When I configure the LTM connected port as a trunk and configure the server port as an access port in VLAN2 then they communicate. This is with the LTM interface tagged and untagged. Is there a way to configure the LTM to communicate with the Cisco switch with all ports on the Cisco in the default VLAN1? Or do I need to configure VLANs on the Cisco switch? I think Cisco treats tagged and untagged differently from other industry switches.
  • Cory_50405's avatar
    Cory_50405
    Icon for Noctilucent rankNoctilucent
    Mar 19, 2014

    For logical separation and layer 2 security, you should configure a vlan for this. You don't want to leave everything on the default vlan.