[prev in list] [next in list] [prev in thread] [next in thread]
List: loadbalancing-l
Subject: RE: [load balancing] F5 BIGIP outbound connections forweb access
From: Tony Uccello <t.uccello () torcomp ! com>
Date: 2004-12-29 20:38:36
Message-ID: 13A8D6E2-39E0-4A86-8320-E0689A8CEEFA () mimectl
[Download RAW message or body]
Looks like that did it Bill. Thanks!
Now if I could only get the two machines to stop competing with eachother.
Cheers,
Tony.
From: Computer Guy
Sent: Sun 26/12/2004 9:13 PM
To: lb-l@vegan.net
Subject: RE: [load balancing] F5 BIGIP outbound connections forweb access
Tony,
Have you checked the option (I think snat automap) on
the self-ip addresses?
-B
--- Tony Uccello <t.uccello@torcomp.com> wrote:
> Hi Bill, appreciate the response,
> I created a Default SNAT with 'auto' and 'default'
> Origin, however, neither of my web servers can go
> out to the internet.
> I can ping up to 192.168.8.1, but no further. If I'm
> using the MindTerm console I can ping anywhere out
> to the internet. I'm using 192.168.7.77 as the
> gateway for the WebServers.
>
>
> As for the failover, I have the cable attached
> between the units, also tried Network failover. Will
> try the bigip commands as suggested in the article.
>
>
>
>
> From: Bill Whitson
> Sent: Wed 22/12/2004 11:51 AM
> To: lb-l@vegan.net
> Subject: Re: [load balancing] F5 BIGIP outbound
> connections forweb access
>
>
> Tony,
>
> Take a look at the following link for your outbound
> access issues:
>
>
http://tech.f5.com/home/bigip/solutions/natsnat/sol666.html
>
> For your active/standby problem; do you have an F5
> failover cable attached
> between the units? If not, you will need to
> configure network failover
> instead. See:
>
>
http://tech.f5.com/home/bigip/manuals/bigip4_2/bigip4_2ref/BIGip_redundant.h
> tml#1171331
>
> --
> Bill Whitson
> Solutions Engineer
> AskF5
>
> Desk: 206-272-6587
> Mobile: 206-604-7048
> b.whitson@f5.com
>
> AskF5: http://tech.f5.com/
>
> On 12/22/04 7:51 AM, "Tony Uccello"
> <t.uccello@torcomp.com> wrote:
>
> > Hello there, I'm new to LB with F5 BIG IP
> inherited two D30s running BIG-IP
> > Kernel 4.2PTF-10 Build95
> >
> > This is my dilemma,
> > have configured two web servers on internal VLAN
> with http and ssl pools
> > connected to virtual server so have successful web
> connection from external
> > vlan connect to firewall (router).
> >
> > However, I require web access from the web servers
> for web services connection
> > to other servers on internet from behind the BIG
> IPs. I have placed two
> > disseparate unmanaged switches, one for external
> Vlan, one for Intern Vlan.
> > I only have the single BIGIP1 active as BIGIP2
> does not remain in STANDBY mode
> > and when active it competes with BIGIP1 have
> syncronized successfully, however
> > when BIGIP2 is online BIGIP1 complains of
> duplicate IP addresses, so I have
> > BIGIP2 offline for now until I resolve this
> outbound connections issue.
> >
> > Any help would be greatly appreciated.
> >
> >
> > Here's my diagram;
> > {--------------------}
> > {Internet Cloud}
> > {--------------------}
> > |
> > +---------------+
> > | SONICWALL|
> > +---------------+ F/W,
> 192.168.8.10 (Gateway)
> > |
> > +----------Unmanaged Switch---------+
> > | |
> > | |
> > 192.168.8.80 (Virtual Server Address)
> > | |
> >
> > 192.168.8.1 | | 192.168.8.2
> > 192.168.8.88(Shared)
> > | |
> > EXTERNAL VLAN
> > +---------+ +---------+
> > | BIG-IP1 | | BIG-IP2 | (Not active
> due to STANDBY Issues)
> > +---------+ +---------+
> > INTERNAL VLAN
> > 192.168.7.1 | | 192.168.7.10
> > 192.168.7.77(Shared)
> > | |
> > +---Unmanged Switch---------+
> > | |
> > (POOL NODES)
> > +-----+ +-----+
> > 192.178.7.2 | W/S | | W/S | 192.168.7.3
> > +-----+ +-----+
> >
> >
> > IFCONFIG OUTPUT:
> > 6.1: (exp0)
> >
>
flags=8963<UP,BROADCAST,NOTRAILERS,RUNNING,PROMISC,SIMPLEX,MULTICAST>
> > link type ether 0:10:f3:2:94:5c mtu 1500 speed
> 100Mbps
> > media auto (100baseTX full_duplex) status active
> > media choice auto
> > media choice 100baseTX full_duplex
> > media choice 100baseTX
> > media choice 10baseT full_duplex
> > media choice 10baseT
> > media choice none full_duplex
> > media choice none
> > 2.1: (exp1)
> >
>
flags=8963<UP,BROADCAST,NOTRAILERS,RUNNING,PROMISC,SIMPLEX,MULTICAST>
> > link type ether 0:2:b3:10:c9:9a mtu 1500 speed
> 100Mbps
> > media auto (100baseTX full_duplex) status active
> > media choice auto
> > media choice 100baseTX full_duplex
> > media choice 100baseTX
> > media choice 10baseT full_duplex
> > media choice 10baseT
> > media choice none full_duplex
> > media choice none
> > 1.1: (exp2)
> >
>
flags=8963<UP,BROADCAST,NOTRAILERS,RUNNING,PROMISC,SIMPLEX,MULTICAST>
> > link type ether 0:2:b3:10:c5:75 mtu 1500 speed
> 100Mbps
> > media auto (100baseTX full_duplex) status active
> > media choice auto
> > media choice 100baseTX full_duplex
> > media choice 100baseTX
> > media choice 10baseT full_duplex
> > media choice 10baseT
> > media choice none full_duplex
> > media choice none
> > lo0: flags=8009<UP,LOOPBACK,MULTICAST>
> > link type loop mtu 4352
> > inet 127.0.0.1 netmask 255.0.0.0
> > admin: (vlan0)
> flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST>
> > link type vlan 0:2:b3:10:c5:75 mtu 1500
> > Interfaces: (tag 4094)
> > 1.1: (exp2) flags=3<LEARNING,DISCOVER>
> > inet 192.168.1.245 netmask 255.255.255.0 broadcast
> 192.168.1.255
> > inet 192.168.1.248 netmask 255.255.255.0 broadcast
> 192.168.1.255
> > external: (vlan1)
> flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST>
> > link type vlan 0:10:f3:2:94:5c mtu 1500
> > Interfaces: (tag 4093)
> > 6.1: (exp0) flags=3<LEARNING,DISCOVER>
> > inet 192.168.8.1 netmask 255.255.255.0 broadcast
> 192.168.8.255
> > inet 192.168.8.88 netmask 255.255.255.0 broadcast
> 192.168.8.255
> > inet 192.168.8.80 netmask 255.255.255.0 broadcast
> 192.168.8.255
> > internal: (vlan2)
> flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST>
> > link type vlan 0:2:b3:10:c9:9a mtu 1500
> > Interfaces: (tag 4092)
> > 2.1: (exp1) flags=3<LEARNING,DISCOVER>
> > inet 192.168.7.1 netmask 255.255.255.0 broadcast
> 192.168.7.255
> > inet 192.168.7.77 netmask 255.255.255.0 broadcast
> 192.168.7.255
> >
> >
> > here's the route table:
> >
> > Routing tables
> > Internet:
> > Destination Gateway
> Flags MTU If
> > default 192.168.8.10
> UGS 1500 vlan1
>
=== message truncated ===
__________________________________
Do you Yahoo!?
Send holiday email and support a worthy cause. Do good.
http://celebrity.mail.yahoo.com
____________________
The Load Balancing Mailing List
Unsubscribe: mailto:majordomo@vegan.net?body=unsubscribe%20lb-l
Archive: http://vegan.net/lb/archive
LBDigest: http://lbdigest.com
MRTG with SLB: http://vegan.net/MRTG
Hosted by: http://www.tokkisystems.com
[Attachment #3 (text/html)]
<HTML><HEAD></HEAD>
<BODY>
<DIV id=idOWAReplyText13319 dir=ltr>
<DIV dir=ltr><FONT face=Arial color=#000000 size=2>Looks like that did it Bill. \
Thanks!</FONT></DIV> <DIV dir=ltr><FONT face=Arial size=2></FONT> </DIV>
<DIV dir=ltr><FONT face=Arial size=2>Now if I could only get the two machines to stop \
competing with eachother.</FONT></DIV> <DIV dir=ltr><FONT face=Arial \
size=2></FONT> </DIV> <DIV dir=ltr><FONT face=Arial size=2>Cheers,</FONT></DIV>
<DIV dir=ltr><FONT face=Arial size=2>Tony.</FONT></DIV>
<DIV dir=ltr> </DIV></DIV>
<DIV dir=ltr><BR>
<HR tabIndex=-1>
<FONT face=Tahoma size=2><B>From:</B> Computer Guy<BR><B>Sent:</B> Sun 26/12/2004 \
9:13 PM<BR><B>To:</B> lb-l@vegan.net<BR><B>Subject:</B> RE: [load balancing] F5 BIGIP \
outbound connections forweb access<BR></FONT><BR></DIV> <DIV><PRE style="WORD-WRAP: \
break-word">Tony,
Have you checked the option (I think snat automap) on
the self-ip addresses?
-B
--- Tony Uccello <t.uccello@torcomp.com> wrote:
> Hi Bill, appreciate the response,
> I created a Default SNAT with 'auto' and 'default'
> Origin, however, neither of my web servers can go
> out to the internet.
> I can ping up to 192.168.8.1, but no further. If I'm
> using the MindTerm console I can ping anywhere out
> to the internet. I'm using 192.168.7.77 as the
> gateway for the WebServers.
>
>
> As for the failover, I have the cable attached
> between the units, also tried Network failover. Will
> try the bigip commands as suggested in the article.
>
>
>
>
> From: Bill Whitson
> Sent: Wed 22/12/2004 11:51 AM
> To: lb-l@vegan.net
> Subject: Re: [load balancing] F5 BIGIP outbound
> connections forweb access
>
>
> Tony,
>
> Take a look at the following link for your outbound
> access issues:
>
>
http://tech.f5.com/home/bigip/solutions/natsnat/sol666.html
>
> For your active/standby problem; do you have an F5
> failover cable attached
> between the units? If not, you will need to
> configure network failover
> instead. See:
>
>
http://tech.f5.com/home/bigip/manuals/bigip4_2/bigip4_2ref/BIGip_redundant.h
> tml#1171331
>
> --
> Bill Whitson
> Solutions Engineer
> AskF5
>
> Desk: 206-272-6587
> Mobile: 206-604-7048
> b.whitson@f5.com
>
> AskF5: http://tech.f5.com/
>
> On 12/22/04 7:51 AM, "Tony Uccello"
> <t.uccello@torcomp.com> wrote:
>
> > Hello there, I'm new to LB with F5 BIG IP
> inherited two D30s running BIG-IP
> > Kernel 4.2PTF-10 Build95
> >
> > This is my dilemma,
> > have configured two web servers on internal VLAN
> with http and ssl pools
> > connected to virtual server so have successful web
> connection from external
> > vlan connect to firewall (router).
> >
> > However, I require web access from the web servers
> for web services connection
> > to other servers on internet from behind the BIG
> IPs. I have placed two
> > disseparate unmanaged switches, one for external
> Vlan, one for Intern Vlan.
> > I only have the single BIGIP1 active as BIGIP2
> does not remain in STANDBY mode
> > and when active it competes with BIGIP1 have
> syncronized successfully, however
> > when BIGIP2 is online BIGIP1 complains of
> duplicate IP addresses, so I have
> > BIGIP2 offline for now until I resolve this
> outbound connections issue.
> >
> > Any help would be greatly appreciated.
> >
> >
> > Here's my diagram;
> > {--------------------}
> > {Internet Cloud}
> > {--------------------}
> > |
> > +---------------+
> > | SONICWALL|
> > +---------------+ F/W,
> 192.168.8.10 (Gateway)
> > |
> > +----------Unmanaged Switch---------+
> > | |
> > | |
> > 192.168.8.80 (Virtual Server Address)
> > | |
> >
> > 192.168.8.1 | | 192.168.8.2
> > 192.168.8.88(Shared)
> > | |
> > EXTERNAL VLAN
> > +---------+ +---------+
> > | BIG-IP1 | | BIG-IP2 | (Not active
> due to STANDBY Issues)
> > +---------+ +---------+
> > INTERNAL VLAN
> > 192.168.7.1 | | 192.168.7.10
> > 192.168.7.77(Shared)
> > | |
> > +---Unmanged Switch---------+
> > | |
> > (POOL NODES)
> > +-----+ +-----+
> > 192.178.7.2 | W/S | | W/S | 192.168.7.3
> > +-----+ +-----+
> >
> >
> > IFCONFIG OUTPUT:
> > 6.1: (exp0)
> >
>
flags=8963<UP,BROADCAST,NOTRAILERS,RUNNING,PROMISC,SIMPLEX,MULTICAST>
> > link type ether 0:10:f3:2:94:5c mtu 1500 speed
> 100Mbps
> > media auto (100baseTX full_duplex) status active
> > media choice auto
> > media choice 100baseTX full_duplex
> > media choice 100baseTX
> > media choice 10baseT full_duplex
> > media choice 10baseT
> > media choice none full_duplex
> > media choice none
> > 2.1: (exp1)
> >
>
flags=8963<UP,BROADCAST,NOTRAILERS,RUNNING,PROMISC,SIMPLEX,MULTICAST>
> > link type ether 0:2:b3:10:c9:9a mtu 1500 speed
> 100Mbps
> > media auto (100baseTX full_duplex) status active
> > media choice auto
> > media choice 100baseTX full_duplex
> > media choice 100baseTX
> > media choice 10baseT full_duplex
> > media choice 10baseT
> > media choice none full_duplex
> > media choice none
> > 1.1: (exp2)
> >
>
flags=8963<UP,BROADCAST,NOTRAILERS,RUNNING,PROMISC,SIMPLEX,MULTICAST>
> > link type ether 0:2:b3:10:c5:75 mtu 1500 speed
> 100Mbps
> > media auto (100baseTX full_duplex) status active
> > media choice auto
> > media choice 100baseTX full_duplex
> > media choice 100baseTX
> > media choice 10baseT full_duplex
> > media choice 10baseT
> > media choice none full_duplex
> > media choice none
> > lo0: flags=8009<UP,LOOPBACK,MULTICAST>
> > link type loop mtu 4352
> > inet 127.0.0.1 netmask 255.0.0.0
> > admin: (vlan0)
> flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST>
> > link type vlan 0:2:b3:10:c5:75 mtu 1500
> > Interfaces: (tag 4094)
> > 1.1: (exp2) flags=3<LEARNING,DISCOVER>
> > inet 192.168.1.245 netmask 255.255.255.0 broadcast
> 192.168.1.255
> > inet 192.168.1.248 netmask 255.255.255.0 broadcast
> 192.168.1.255
> > external: (vlan1)
> flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST>
> > link type vlan 0:10:f3:2:94:5c mtu 1500
> > Interfaces: (tag 4093)
> > 6.1: (exp0) flags=3<LEARNING,DISCOVER>
> > inet 192.168.8.1 netmask 255.255.255.0 broadcast
> 192.168.8.255
> > inet 192.168.8.88 netmask 255.255.255.0 broadcast
> 192.168.8.255
> > inet 192.168.8.80 netmask 255.255.255.0 broadcast
> 192.168.8.255
> > internal: (vlan2)
> flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST>
> > link type vlan 0:2:b3:10:c9:9a mtu 1500
> > Interfaces: (tag 4092)
> > 2.1: (exp1) flags=3<LEARNING,DISCOVER>
> > inet 192.168.7.1 netmask 255.255.255.0 broadcast
> 192.168.7.255
> > inet 192.168.7.77 netmask 255.255.255.0 broadcast
> 192.168.7.255
> >
> >
> > here's the route table:
> >
> > Routing tables
> > Internet:
> > Destination Gateway
> Flags MTU If
> > default 192.168.8.10
> UGS 1500 vlan1
>
=== message truncated ===
__________________________________
Do you Yahoo!?
Send holiday email and support a worthy cause. Do good.
http://celebrity.mail.yahoo.com
____________________
The Load Balancing Mailing List
Unsubscribe: mailto:majordomo@vegan.net?body=unsubscribe%20lb-l
Archive: http://vegan.net/lb/archive
LBDigest: http://lbdigest.com
MRTG with SLB: http://vegan.net/MRTG
Hosted by: http://www.tokkisystems.com
</PRE></DIV></BODY></HTML>
____________________
The Load Balancing Mailing List
Unsubscribe: mailto:majordomo@vegan.net?body=unsubscribe%20lb-l
Archive: http://vegan.net/lb/archive
LBDigest: http://lbdigest.com
MRTG with SLB: http://vegan.net/MRTG
Hosted by: http://www.tokkisystems.com
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic