Trouble with tmsh command using incorrect route domain

Question

I am trying to automate an SSL CRL update. I have the correct command tmsh modify /sys file ssl-crl testca.crl source-path https://10.11.248.22/web/cert/testca.pem, which is working in a sandbox environment with a single route-domain. &nbsp;
I cannot get this to function in production where there are multiple route-domains. 10.11.248.0/24 is directly connected to the F5 in RD2. I have verified that I am able to curl the path. &nbsp;
rdexec 2 curl -k https://10.11.248.22/web/cert/testca.pem goes out the correct interface and returns the pem file. &nbsp;
However, modify /sys file ssl-crl testca.crl source-path https://10.11.248.22/web/cert/testca.pem, that uses RD 0 interface and this is NOT routeable to the 10.11.248.0/24 network.&nbsp;
I have attempted rdexec 2 tmsh modify /sys file ssl-crl testca.crl source-path https://10.11.248.22/web/cert/testca.pem
But that also attempts to connect through the RD 0 interface.&nbsp;
I am stumped on this one. How can I tell the tmsh command modify /sys file ssl-crl to use RD 2?&nbsp;

nitass · Answer

this is not supported currently. it is tracked as ID692064 TMSH: FileObjectCmd does not support route domain.
can you try this as a workaround?
net route custom {
    gw %2
    network 10.11.248.0%0/24
}

Forum Discussion

Trouble with tmsh command using incorrect route domain

1 Reply

Recent Discussions

google autenticator broken barcode

Error while running ansible

ASM instance creation

[ASM] - what is "Browser Challange file" ?

[ASM] - HTML5 Cross-Domain Request Enforcement - CLI command

Related Content

Trouble applying GoDaddy certificate to a virtual server

Power of tmsh commands using Ansible

Trouble redirecting on APM rejection.

Ansible - Running bash commands with bigip_command module - How it's done

F5 Partner Solution Showcase - "BlockAPT Platform - Command for Unified Visibility"