Two virtual servers, same destination nodes, different routes
We have the need for two virtual servers for essentially the same destination nodes (both pool members and dynamically chosen nodes) but use different routes to get there. We can control the route to the available pool member and any dynamically chosen node in the iRules via nexthop command which works correctly. The problem is the health of the pool members is determined by a custom HTTP monitor which routes based on routes configured in the ltm which is the correct route for one of the VS but incorrect route for the second VS. We can add a second pool and monitor but can't control the route the new monitor takes to determine health?
In this configuration one route is encrypted (at the next hop specified in the iRule) and the other is not. This all works. I thought I could minimally add an ICMP monitor to determine if the encrypted route was working to the pool member through the next hop but in testing I find that when the encrypted route is down the ICMP monitor doesn't fail. The next hop and the pool member can not communicate at all but the ICMP monitor believes they can. If the next hop is shutdown entirely the ICMP monitor does fail.
So:
-
Is there any way I can control the route of a http monitor in the solution as described
-
Ideas on why the ICMP monitor doesn't seem to work as I expected
-
Is there another way to do this solution