Solved

how to setup BIGIP 540 & 520 cluster  ?

Posted on 2006-06-12
14
389 Views
Last Modified: 2012-05-05
I am trying to cluster 2 F5 Bigip boxes (540 & 520).  So far the i am unsuccessful in getting them to work.  Does anyone know of a config howto or if it is recommened to cluster two different BIGIP models.
0
Comment
Question by:ligmania
  • 7
  • 7
14 Comments
 
LVL 12

Expert Comment

by:Scotty_cisco
ID: 16888167
You should have serial communications cable connected ... I have only done this with the LTM's but same principle and when you walk through the initial config it should ask you if you are running them as a redundant pair.

Thanks
scott
0
 

Author Comment

by:ligmania
ID: 16897774
I'm currently unable to ping from one bigip box to another when they are attached to a hub.  With my laptop i can ping one  of the bigip boxes, both my laptop and other bigip box can't ping this problematic bigip box.  I was going to sync the configuration but can't do so due to my connectivity problem.  I've tried different cables, duplex settings, interface, etc nothing seems to work.  The kernel versions are 4.2FTP-10Build95 and 4.2PTF-07Build11.
0
 
LVL 12

Expert Comment

by:Scotty_cisco
ID: 16898086
That would cause a problem when you initially set them up they will as for the standby unit's real IP address and such.  You need to have connectivity to both units.

Thanks
scott
0
 

Author Comment

by:ligmania
ID: 16899432
For a active/standby configuration what should the unit id's be?  I currently have them as unit id "1" and unit id "2". In the solutions guide they have this setup for a active/active setup, could this cause a problem?
0
 
LVL 12

Expert Comment

by:Scotty_cisco
ID: 16903205
no should not cause a problem the more simple the better.

are you able to ping between the devices?
When you traceroute from the outside do you see the BIGIP hosts are you passing traffic through them?

Thanks
scott
0
 

Author Comment

by:ligmania
ID: 16903712
I removed my one of the bigips to further simplify the situation.  I now have only two devices connected to a hub, 1 BIGIP and my laptop.  I am trying to configure this bigip with the configuration utility, but i still can't ping it from my laptop.  I have two vlans now internal and external with ip addresses, but i still can't ping the bigip box.  VLan security is turned off for both vlans, and both interfaces show their status as being up on the appliance and on the hub. The lights on the interface cards for the appliance are amber.  To answer your question Scott no traffic is getting through.
0
 
LVL 12

Expert Comment

by:Scotty_cisco
ID: 16903739
how many VLAN's are setup in the unit are you telling them to TAG the packet or not?  If you are tagging then a hub will not work you will need a 802.1q capable switch.

Thanks
Scott
0
Save on storage to protect fatherhood memories

You're the dad who has everything. This Father's Day, make sure your family memories are protected. My Passport Ultra has automatic backup and password protection to keep your cherished photos and videos safe. With up to 3TB, you have plenty of room to hold the adventures ahead.

 

Author Comment

by:ligmania
ID: 16903849
looks like the vlan's are tagged.  From the ifconfig -a output they have a tag number (4093,4094) for external and internal vlans, respectively.  I created the vlan's through the command line config utility and not the web interface, so i didn't see the option whether to tag the vlan or not.
0
 
LVL 12

Expert Comment

by:Scotty_cisco
ID: 16903997
do you have access to a switch that can tag do 802.1q tagging?

Thanks
scott
0
 

Author Comment

by:ligmania
ID: 16904148
Yes I have a dell switch in my lab, still puzzled because my second bigip pings just fine from my laptop.  At this point i'm willing to try anything, so i'll hook it up to a dell switch with 802.1q.  What additional steps are needed on the switch ?
0
 
LVL 12

Accepted Solution

by:
Scotty_cisco earned 500 total points
ID: 16904184
you need to setup a trunk port should be in vlan 1 by default..... Because it is a dell and my expertiese is more with Cisco I can't tell you the exact commands but I know I have fought this battle before with sorce and destination nat issues and the only way to do it was with multipule VLANS.... I had to open a case with F5 to get any help it appears that little if anyone knows much about the F5 stuff and their website is not the best resource for information.

Thanks
scott
0
 

Author Comment

by:ligmania
ID: 16905088
I tried it on a dell switch with the same vlan id but still can't ping the appliance. =(
0
 

Author Comment

by:ligmania
ID: 16906433
Thanks scott, i found out what the problem was.  There a filter on the box dropping my packets, the dreaded ipfw program which i didn't see running with the ps command because its in kernel space.
0
 
LVL 12

Expert Comment

by:Scotty_cisco
ID: 16906468
Lovely..... so now things are good with the failover now that the boxes can talk?

Thanks
Scott
0

Featured Post

Scale it in WD Gold

With up to ten times the workload capacity of desktop drives, WD Gold hard drives employ advanced technology to deliver among the best in reliability, capacity, power efficiency and performance.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The Rasberry PI is a low cost piece of hardware that you can have a lot of fun with through experimenting and building/working on projects like media players, running a low cost computer, build data loggers etc. - see: https://www.raspberrypi.org
This paper addresses the security of Sennheiser DECT Contact Center and Office (CC&O) headsets. It describes the DECT security chain comprised of “Pairing”, “Per Call Authentication” and “Encryption”, which are all part of the standard DECT protocol.
You have products, that come in variants and want to set different prices for them? Watch this micro tutorial that describes how to configure prices for Magento super attributes. Assigning simple products to configurable: We assigned simple products…
A short film showing how OnPage and Connectwise integration works.

914 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

22 Experts available now in Live!

Get 1:1 Help Now