Will modification of configuration via the GUI Configuration Utility break existing connections?

Question

I have read that load sys conf on command line will break existing connections. Will the same thing occur if the conf is modified, or simply just reloaded, via the GUI Configuration Utility?&nbsp;

nitass · Answer

I have read that load sys conf on command line will break existing connections.&nbsp;

it seems okay here (i.e. not breaking). i am running 11.5.1.&nbsp;

Will the same thing occur if the conf is modified, or simply just reloaded, via the GUI Configuration Utility?&nbsp;

i tested deleting configuration via tmsh. the existing connection still survives.&nbsp;
is there reload configuration option in gui?&nbsp;

nitass · Answer

this is deleting configuration test.
 config

root@(ve11a)(cfg-sync Changes Pending)(Active)(/Common)(tmos) list ltm virtual bar
ltm virtual bar {
    destination 172.28.24.10:23
    ip-protocol tcp
    mask 255.255.255.255
    pool foo
    profiles {
        tcp { }
    }
    source 0.0.0.0/0
    source-address-translation {
        type automap
    }
    vs-index 50
}
root@(ve11a)(cfg-sync In Sync)(Active)(/Common)(tmos) list ltm pool foo
ltm pool foo {
    members {
        200.200.200.101:23 {
            address 200.200.200.101
        }
    }
}

test

[root@ve11a:Active:In Sync] config  date; tmsh show sys connection cs-server-port 23
Sun Jul  6 17:11:05 PDT 2014
Sys::Connections
172.18.204.230:49184  172.28.24.10:23  200.200.200.14:49184  200.200.200.101:23  tcp  30  (tmm: 1)  none
Total records returned: 1

[root@ve11a:Active:In Sync] config  date; tmsh delete ltm virtual bar
Sun Jul  6 17:11:47 PDT 2014

[root@ve11a:Active:In Sync] config  date; tmsh show sys connection cs-server-port 23
Sun Jul  6 17:11:52 PDT 2014
Sys::Connections
172.18.204.230:49184  172.28.24.10:23  200.200.200.14:49184  200.200.200.101:23  tcp  2  (tmm: 1)  none
Total records returned: 1

[root@ve11a:Active:In Sync] config  tcpdump -nni 0.0 -s0 -c 10 port 23
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on 0.0, link-type EN10MB (Ethernet), capture size 65535 bytes
17:12:20.398431 IP 200.200.200.101.23 &gt; 200.200.200.14.49184: . 242977700:242979160(1460) ack 1485839933 win 5840 in slot1/tmm1 lis=/Common/bar
17:12:20.398444 IP 200.200.200.101.23 &gt; 200.200.200.14.49184: P 1460:2062(602) ack 1 win 5840 in slot1/tmm1 lis=/Common/bar
17:12:20.398460 IP 172.28.24.10.23 &gt; 172.18.204.230.49184: P 3965833330:3965834790(1460) ack 56076194 win 4210 out slot1/tmm1 lis=/Common/bar
17:12:20.398467 IP 172.28.24.10.23 &gt; 172.18.204.230.49184: P 1460:2062(602) ack 1 win 4210 out slot1/tmm1 lis=/Common/bar
17:12:20.398471 IP 200.200.200.14.49184 &gt; 200.200.200.101.23: . ack 2062 win 48955 out slot1/tmm1 lis=/Common/bar
17:12:20.400144 IP 200.200.200.101.23 &gt; 200.200.200.14.49184: P 2062:3040(978) ack 1 win 5840 in slot1/tmm1 lis=/Common/bar
17:12:20.400158 IP 172.28.24.10.23 &gt; 172.18.204.230.49184: P 2062:3040(978) ack 1 win 4210 out slot1/tmm1 lis=/Common/bar
17:12:20.400161 IP 200.200.200.14.49184 &gt; 200.200.200.101.23: . ack 3040 win 49933 out slot1/tmm1 lis=/Common/bar
17:12:20.411946 IP 172.18.204.230.49184 &gt; 172.28.24.10.23: . ack 1460 win 64437 in slot1/tmm1 lis=/Common/bar
17:12:20.411956 IP 172.18.204.230.49184 &gt; 172.28.24.10.23: . ack 3040 win 64437 in slot1/tmm1 lis=/Common/bar

nitass · Answer

this is reloading configuration test.
 config

root@(ve11a)(cfg-sync In Sync)(Active)(/Common)(tmos) list ltm virtual bar
ltm virtual bar {
    destination 172.28.24.10:23
    ip-protocol tcp
    mask 255.255.255.255
    pool foo
    profiles {
        tcp { }
    }
    source 0.0.0.0/0
    source-address-translation {
        type automap
    }
    vs-index 51
}
root@(ve11a)(cfg-sync In Sync)(Active)(/Common)(tmos) list ltm pool foo
ltm pool foo {
    members {
        200.200.200.101:23 {
            address 200.200.200.101
        }
    }
}

test

[root@ve11a:Active:In Sync] config  date; tmsh show sys connection cs-server-port 23
Sun Jul  6 17:16:39 PDT 2014
Sys::Connections
172.18.204.230:49483  172.28.24.10:23  200.200.200.14:49483  200.200.200.101:23  tcp  3  (tmm: 0)  none
Total records returned: 1

[root@ve11a:Active:In Sync] config  date; tmsh load sys config
Sun Jul  6 17:16:53 PDT 2014
Loading system configuration...
  /defaults/asm_base.conf
  /defaults/config_base.conf
  /defaults/low_profile_base.conf
  /defaults/low_security_base.conf
  /defaults/policy_base.conf
  /defaults/wam_base.conf
  /defaults/analytics_base.conf
  /defaults/apm_saml_base.conf
  /defaults/app_template_base.conf
  /defaults/classification_base.conf
  /defaults/daemon.conf
  /defaults/fullarmor_gpo_base.conf
  /defaults/profile_base.conf
  /defaults/sandbox_base.conf
  /defaults/security_base.conf
  /defaults/urldb_base.conf
  /usr/share/monitors/base_monitors.conf
Loading configuration...
  /config/bigip_base.conf
  /config/bigip_user.conf
  /config/bigip.conf
[root@ve11a:Active:Not All Devices Synced] config 
[root@ve11a:Active:Not All Devices Synced] config 
[root@ve11a:Active:Not All Devices Synced] config 
[root@ve11a:Active:Not All Devices Synced] config 
[root@ve11a:Active:In Sync] config 
[root@ve11a:Active:In Sync] config 
[root@ve11a:Active:In Sync] config  date; tmsh show sys connection cs-server-port 23
Sun Jul  6 17:17:23 PDT 2014
Sys::Connections
172.18.204.230:49483  172.28.24.10:23  200.200.200.14:49483  200.200.200.101:23  tcp  2  (tmm: 0)  none
Total records returned: 1

[root@ve11a:Active:In Sync] config  tcpdump -nni 0.0 -s0 -c 10 port 23
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on 0.0, link-type EN10MB (Ethernet), capture size 65535 bytes
17:17:50.572919 IP 200.200.200.101.23 &gt; 200.200.200.14.49483: . 444961626:444963086(1460) ack 3101732148 win 5840 in slot1/tmm0 lis=/Common/bar
17:17:50.572945 IP 172.28.24.10.23 &gt; 172.18.204.230.49483: P 202469901:202471361(1460) ack 2808965259 win 4210 out slot1/tmm0 lis=/Common/bar
17:17:50.574194 IP 200.200.200.101.23 &gt; 200.200.200.14.49483: . 1460:2920(1460) ack 1 win 5840 in slot1/tmm0 lis=/Common/bar
17:17:50.574201 IP 200.200.200.101.23 &gt; 200.200.200.14.49483: P 2920:3034(114) ack 1 win 5840 in slot1/tmm0 lis=/Common/bar
17:17:50.574212 IP 172.28.24.10.23 &gt; 172.18.204.230.49483: P 1460:2920(1460) ack 1 win 4210 out slot1/tmm0 lis=/Common/bar
17:17:50.574217 IP 200.200.200.14.49483 &gt; 200.200.200.101.23: . ack 2920 win 65535 out slot1/tmm0 lis=/Common/bar
17:17:50.574221 IP 172.28.24.10.23 &gt; 172.18.204.230.49483: P 2920:3034(114) ack 1 win 4210 out slot1/tmm0 lis=/Common/bar
17:17:50.574223 IP 200.200.200.14.49483 &gt; 200.200.200.101.23: . ack 3034 win 65535 out slot1/tmm0 lis=/Common/bar
17:17:50.586177 IP 172.18.204.230.49483 &gt; 172.28.24.10.23: . ack 1460 win 64437 in slot1/tmm0 lis=/Common/bar
17:17:50.588276 IP 172.18.204.230.49483 &gt; 172.28.24.10.23: . ack 2920 win 64437 in slot1/tmm0 lis=/Common/bar

Forum Discussion

Will modification of configuration via the GUI Configuration Utility break existing connections?

3 Replies

Recent Discussions

Reliable resources for identifying IP addresses

Issue on license renewal

Viprion files on blades.

redirect not working

active/active Support Declarative Onboarding

Related Content

Getting Started with BIG-IP Next: Configuring Instance High Availability

F5 BIG-IP SSL Orchestrator Configuration with Advanced WAFaaS

Virtual-wire Configuration and Troubleshooting

BIG-IP vWire Configuration

Re: LTM SYN Cookie Configuration