Use a default route for TMM, but allow remote syslog to work through mgmt interface

Question

Hi,&nbsp;
We have a scenario, where we would like to have a default route in the TMM:
Destination: 0.0.0.0/0
Gateway: 10.0.0.1&nbsp;
10.0.0.0/24 is our SNAT egress network.
Our management network is 192.168.0.0/24, with default gw 192.168.0.1&nbsp;
This Works, however, when trying to configure remote syslog to server 172.16.0.10, which should be reached via 192.168.0.1, the default route in TMM preceedes the management route, and the BigIP attempts to send syslog messages using out SNAT pool&nbsp;
I cannot quite see why, as we use the built-in syslog-ng facility to push logs to the remote server.&nbsp;

nathe · Answer

Erland,&nbsp;
Have you seen the following two docs?&nbsp;
https://support.f5.com/kb/en-us/solutions/public/13000/000/sol13080.html&nbsp;
https://support.f5.com/kb/en-us/solutions/public/13000/200/sol13284.html&nbsp;
So I'd suggest a specific static management route.&nbsp;
Hope this helps,&nbsp;
N&nbsp;

what_lies_bene1 · Answer

The default management route does not count and the TMM default route takes precedence. Configure a specific management route for 172.16.0.10 (or it's subnet) to point to the default gateway for the management subnet, then it'll work.

Forum Discussion

Use a default route for TMM, but allow remote syslog to work through mgmt interface

2 Replies

Recent Discussions

Unwinding the Benefits of Investing in White Label Crypto Wallet

SMTP profile not visible & showing

About AWAF "Redirect URLs" in "Responses and Blocks"

F5 iRule to replace host to path

Chrome V 124+ on MacOS - Virtual Server Access Issue

Related Content

Application Programming Interface (API) Authentication types simplified

vCMP logical interfaces throughput

Symmetric routing on NGINX Plus with multiple interfaces

Parameteters in default https monitor

change default admin user name on F5