Can I prevent VS to send RST in case there are no active members in associated pool?
Hi guys,
recently we hit an interesting scenario during a migration: we had a VS for an application with hundreds of clients with no pool member being active, yet. LTM started to send TCP Resets to clients trying to reach the VS. The bad thing was that the clients were stubbornly trying again and again right after they received RST, resulting in tens of SYN-RST pairs per client per second. This multiplied quickly and took down another device along the path.
The question is, can I change the behavior of the F5 and prevent it to send RST to every SYN it receives? The presumption is that even if clients will try again and again, it won't be tens requests per client per second, but every client shall send one SYN after timeout of few seconds.
Note: I can, of course, solve this outside of the F5. This question is, nevertheless, related to whether it can be done on the F5 directly.
Thank you.
Jozef