Forum Discussion

Ppp2016_241036's avatar
Ppp2016_241036
Icon for Nimbostratus rankNimbostratus
Feb 01, 2016

Local F5 BIG-IP VE connection issue with Junos VPN (Please advise)

I have my local F5 BIG-IP VMWare Virtual Machine Edition setup in my macbook. I had trouble to launch F5 GUI console https://10.128.1.245/xui/ when connecting with my work Junos Pulse VPN when working from home. It kept saying "Unable to contact BIG-IP device" when I attempted to launch F5 GUI. It is fine without VPN connection. I do really want to resolve this issue.

 

I did talk to my company's support and they said work VPN does allow split tunnel, and said this is not something they supported because this is F5 issue. I tried to do the google search but unable to find anything useful.

 

I have no idea what's going on, and if anyone has advice or ideas how to troubleshoot this issue, I really appreciate it!!

 

Thanks!!

 

BIG-IP
devops
LTM

2 Replies

Sort By
  • Minn_62043's avatar
    Minn_62043
    Icon for Cirrostratus rankCirrostratus
    Feb 03, 2016

    Your connection to 10.128.1.245 could be going through the VPN tunnel. So that your VM is unreachable. I don't think it is an F5 issue.

     

    Even if you are using split tunnel, the subnet of your VM could be in your wok network.

     

    You can check your routing table "netstat -nr" and try to do a traceroute to that IP from your Macbook. That should tell how your traffic to 10.128.1.245 is going.

     

    • happynfocus_245's avatar
      happynfocus_245
      Icon for Nimbostratus rankNimbostratus
      Feb 17, 2016
      Thanks Minn. I asked the VPN team and they said the VPN allow split tunnel. Also, the VPN does modify the route table but only to Tunnel specific IP's that force through the VPN. Unfortunately they cannot help me troubleshoot the issue. When I tried it without VPN connection for "netstat -rn" command: 10.128.1.245 0:c:29:40:2c:6b UHLWIi 2 40 vmnet2 1190 With VPN connection for "netstat -rn" command: 10.128.1.245 10.70.200.92 UGHWIi 2 17 utun0 traceroute 10.128.1.245 traceroute to 10.128.1.245 (10.128.1.245), 64 hops max, 52 byte packets 1 10.200.200.200 (10.200.200.200) 5.111 ms 5.816 ms 4.928 ms I even run "sudo route add -host 10.128.1.245 -interface vmnet2" but still not working. I just cannot launched F5 admin console with https://10.128.1.245 any ideas? thanks!!