Forum Discussion

craig_m_254946's avatar
craig_m_254946
Icon for Nimbostratus rankNimbostratus
Oct 05, 2017

VIP/Pool using 5 ports

I'm trying to setup new VIP(s) and Pool(s) using 5 different ports.

 

I have two IPs to use on the F5, 10.0.0.1 (prod) and 10.0.0.2 (test). There are two pool members for prod and two for test.

 

I have 5 ports that I'm trying to configure for use; 9100, 9101, 9102, 443 and 8443.

 

I tested using 5 VIPs and 5 Pools, one for each port. No luck.

 

I tested using 1 VIP set to any port and 1 large pool with all 5 ports (10 total pool members). No luck.

 

I started my testing with port 9100. I disabled one of the pool members for this port so we would know all traffic would be going to 1 pool member. I did a packet capture on the F5 in both testings and the pool member keeps sending a RST,ACK back to the F5.

 

The end user was doing a packet capture on the same pool member and saw no packets coming from the F5. The end user telneted over port 9100 from a different server to the pool member we were trying to hit and it was seen in WireShark. I telneted over port 9100 from the F5 and it was also seen in WireShark.

 

There is a firewall between the F5 and the pool members. It's logs are showing allowed traffic and session end due to RST from server.

 

I provided all this information to the end user.