gsandu_255860
Jul 05, 2016Nimbostratus
Issue with BIG-IP Initial Configuration .
I setup LTM according to article https://support.f5.com/kb/en-us/products/big-ip_ltm/manuals/product/bigip-system-initial-configuration-11-6-0/1.htmlunique_1616379767 . According to BIG-IP XUI everything looks fine. All Virtual Servers & nodes & pool are green , but can not access to Virtual Server from browser https://10.100.223.200:8443 (VS- pool - 2 nodes). According to netstat output port 8443 is not open . Could you please help to troubleshoot the issue .
tmsh list /ltm
ltm default-node-monitor {
rule icmp
}
ltm dns analytics global-settings { }
ltm dns cache global-settings { }
ltm dns nameserver ns93 {
address 10.100.93.1
route-domain 0
}
ltm global-settings connection { }
ltm global-settings general {
maintenance-mode enabled
snat-packet-forward enabled
}
ltm global-settings traffic-control { }
ltm node node01 {
address 10.100.222.41
description node01
logging enabled
session monitor-enabled
state up
}
ltm node node02 {
address 10.100.222.42
description node02
logging enabled
session monitor-enabled
state up
}
ltm persistence global-settings { }
ltm persistence source-addr PCOIP {
app-service none
defaults-from source_addr
}
ltm pool http_pool {
members {
node01:http {
address 10.100.222.41
session monitor-enabled
state up
}
node02:http {
address 10.100.222.42
session monitor-enabled
state up
}
}
monitor gateway_icmp
}
ltm profile client-ssl RAA-cert-test {
app-service none
cert default.crt
cert-key-chain {
default {
cert default.crt
key default.key
}
}
chain none
defaults-from clientssl
inherit-certkeychain true
key default.key
passphrase none
}
ltm profile http XFF {
app-service none
defaults-from http
proxy-type reverse
}
ltm profile server-ssl ccmqa.com-ssl-test {
app-service none
defaults-from serverssl
}
ltm rule DirectAccess_NLS {
when HTTP_REQUEST {
HTTP::respond 200
}
}
ltm virtual http_vs02 {
destination 10.100.223.20:http
ip-protocol tcp
mask 255.255.255.255
pool http_pool
profiles {
tcp { }
}
source 0.0.0.0/0
source-address-translation {
type automap
}
vs-index 8
}
ltm virtual https_vs01 {
destination 10.100.223.15:https
ip-protocol tcp
mask 255.255.255.255
pool http_pool
profiles {
RAA-cert-test {
context clientside
}
tcp { }
}
source 0.0.0.0/0
source-address-translation {
type automap
}
vs-index 7
}
ltm virtual vs03_https {
destination 10.100.223.200:pcsync-https
ip-protocol tcp
mask 255.255.255.255
persist {
ssl {
default yes
}
}
pool http_pool
profiles {
RAA-cert-test {
context clientside
}
tcp { }
}
source 0.0.0.0/0
source-address-translation {
type automap
}
vs-index 9
}