Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 396
  • Last Modified:

how to setup BIGIP 540 & 520 cluster ?

I am trying to cluster 2 F5 Bigip boxes (540 & 520).  So far the i am unsuccessful in getting them to work.  Does anyone know of a config howto or if it is recommened to cluster two different BIGIP models.
0
ligmania
Asked:
ligmania
  • 7
  • 7
1 Solution
 
Scotty_ciscoCommented:
You should have serial communications cable connected ... I have only done this with the LTM's but same principle and when you walk through the initial config it should ask you if you are running them as a redundant pair.

Thanks
scott
0
 
ligmaniaAuthor Commented:
I'm currently unable to ping from one bigip box to another when they are attached to a hub.  With my laptop i can ping one  of the bigip boxes, both my laptop and other bigip box can't ping this problematic bigip box.  I was going to sync the configuration but can't do so due to my connectivity problem.  I've tried different cables, duplex settings, interface, etc nothing seems to work.  The kernel versions are 4.2FTP-10Build95 and 4.2PTF-07Build11.
0
 
Scotty_ciscoCommented:
That would cause a problem when you initially set them up they will as for the standby unit's real IP address and such.  You need to have connectivity to both units.

Thanks
scott
0
Veeam Task Manager for Hyper-V

Task Manager for Hyper-V provides critical information that allows you to monitor Hyper-V performance by displaying real-time views of CPU and memory at the individual VM-level, so you can quickly identify which VMs are using host resources.

 
ligmaniaAuthor Commented:
For a active/standby configuration what should the unit id's be?  I currently have them as unit id "1" and unit id "2". In the solutions guide they have this setup for a active/active setup, could this cause a problem?
0
 
Scotty_ciscoCommented:
no should not cause a problem the more simple the better.

are you able to ping between the devices?
When you traceroute from the outside do you see the BIGIP hosts are you passing traffic through them?

Thanks
scott
0
 
ligmaniaAuthor Commented:
I removed my one of the bigips to further simplify the situation.  I now have only two devices connected to a hub, 1 BIGIP and my laptop.  I am trying to configure this bigip with the configuration utility, but i still can't ping it from my laptop.  I have two vlans now internal and external with ip addresses, but i still can't ping the bigip box.  VLan security is turned off for both vlans, and both interfaces show their status as being up on the appliance and on the hub. The lights on the interface cards for the appliance are amber.  To answer your question Scott no traffic is getting through.
0
 
Scotty_ciscoCommented:
how many VLAN's are setup in the unit are you telling them to TAG the packet or not?  If you are tagging then a hub will not work you will need a 802.1q capable switch.

Thanks
Scott
0
 
ligmaniaAuthor Commented:
looks like the vlan's are tagged.  From the ifconfig -a output they have a tag number (4093,4094) for external and internal vlans, respectively.  I created the vlan's through the command line config utility and not the web interface, so i didn't see the option whether to tag the vlan or not.
0
 
Scotty_ciscoCommented:
do you have access to a switch that can tag do 802.1q tagging?

Thanks
scott
0
 
ligmaniaAuthor Commented:
Yes I have a dell switch in my lab, still puzzled because my second bigip pings just fine from my laptop.  At this point i'm willing to try anything, so i'll hook it up to a dell switch with 802.1q.  What additional steps are needed on the switch ?
0
 
Scotty_ciscoCommented:
you need to setup a trunk port should be in vlan 1 by default..... Because it is a dell and my expertiese is more with Cisco I can't tell you the exact commands but I know I have fought this battle before with sorce and destination nat issues and the only way to do it was with multipule VLANS.... I had to open a case with F5 to get any help it appears that little if anyone knows much about the F5 stuff and their website is not the best resource for information.

Thanks
scott
0
 
ligmaniaAuthor Commented:
I tried it on a dell switch with the same vlan id but still can't ping the appliance. =(
0
 
ligmaniaAuthor Commented:
Thanks scott, i found out what the problem was.  There a filter on the box dropping my packets, the dreaded ipfw program which i didn't see running with the ps command because its in kernel space.
0
 
Scotty_ciscoCommented:
Lovely..... so now things are good with the failover now that the boxes can talk?

Thanks
Scott
0

Featured Post

Concerto's Cloud Advisory Services

Want to avoid the missteps to gaining all the benefits of the cloud? Learn more about the different assessment options from our Cloud Advisory team.

  • 7
  • 7
Tackle projects and never again get stuck behind a technical roadblock.
Join Now