LTMVE 11.3 vs 11.4 http monitor

Question

i was playing with VE editions in my lab, a very simple scenario, one web server, listening on port 7010 and 7020. each port is a different pool member. everything else is configured with defaults.&nbsp;
with 11.3 (trial edition) pool members are monitored with http(no need to modify nothing since monitor knows the http server is listening on other port) works fine &nbsp;
with 11.4 (lab edition) same configuration, monitors goes immediately to offline, it seams they don't recognize that the port is 7010 or 7020. i made sure http service was running correctly (used curl and tcpdump)&nbsp;
any suggestion on how to fix this? or there is a mayor change in the way monitors are implemented in 11.4?&nbsp;
thanks in advance&nbsp;
Mario &nbsp;

nitass · Answer

any suggestion on how to fix this? or there is a mayor change in the way monitors are implemented in 11.4?&nbsp;

have you compared tcpdump between curl and health monitor traffic?&nbsp;
Troubleshooting Ltm Monitors by Aaron&nbsp;
https://devcentral.f5.com/wiki/advdesignconfig.TroubleshootingLtmMonitors.ashx&nbsp;

nitass_89166 · Answer

any suggestion on how to fix this? or there is a mayor change in the way monitors are implemented in 11.4?&nbsp;

have you compared tcpdump between curl and health monitor traffic?&nbsp;
Troubleshooting Ltm Monitors by Aaron&nbsp;
https://devcentral.f5.com/wiki/advdesignconfig.TroubleshootingLtmMonitors.ashx&nbsp;

mario_velazque1 · Answer

yes tcpdump and curl output are the same, also checked link you sent but no luck, 11.4 still offline.

mario_velazque1 · Answer

yes tcpdump and curl output are the same, also checked link you sent but no luck, 11.4 still offline.

nitass · Answer

yes tcpdump and curl output are the same, also checked link you sent but no luck, 11.4 still offline.&nbsp;

it must not be the same.&nbsp;
who sent reset first? was the connection reset during ssl handshake or after the handshake? if it was during the handshake, was cipher suite same? &nbsp;
if the connection was reset after the handshake, you may have to decrypt traffic. the server private key is needed. to decrypt traffic, remove https monitor from the pool first, start tcpdump and then re-assign the monitor (we have to capture from the very first packet).&nbsp;
another way is to use openssl s_client to test health monitor's send and receive string.&nbsp;
testing HTTPS with openssl&nbsp;
http://blog.yimingliu.com/2008/02/04/testing-https-with-openssl/&nbsp;

Forum Discussion

LTMVE 11.3 vs 11.4 http monitor

5 Replies

Recent Discussions

Client certificate Authentication - open multiple tabs

google autenticator broken barcode

Chrome V 124+ on MacOS - Virtual Server Access Issue

vulnerabilities (CVE-2020-36363), CVE-2016-0736,CVE-2019-6593-FOR VERSION BIGIP LTM-16.1.4

Port Group on F5OS network setting

Related Content

Health monitor question

F5 Distributed Cloud - Regional Edge Health Monitoring Insights

iRule based RADIUS Health Monitor Builder

HTTP Monitor

Monitor LTM policy