Forum Discussion

Nimbostratus

May 28, 2009

Monitor on Management Interface?

Hello all, Super-newbie here wanting to know if it is possible to create a LDAP monitor to use the management interface on a BIGIP 6400 LTM using 9.4.5. All the networks which the self...

management

monitoring

hooleylist

Cirrostratus

May 28, 2009

Is this LDAP traffic for load balancing or admin authentication? I'm assuming it's the former.

I assume the load balanced traffic from LTM to the LDAP pool is going out a switch interface and you just can't add the static self IP addresses to the firewalls? If so, I imagine you could technically create an admin route (b mgmt route from the command line) which points the LDAP destined traffic over the mgmt port. I'm not sure if you just get warning messages or if the route is ignored.

If you're actually trying to route load balanced traffic out the management port, it's strongly discouraged. The mgmt port should be isolated from client traffic so the mgmt interface will be available to administrators. Also, the mgmt port is limited to 100Mb. I'm sure there are other reasons to avoid this as well.

Are you sure it's not possible to allow monitor traffic via the switch ports? That's the best practice method for a reason.

Aaron

Forum Discussion

Monitor on Management Interface?

Recent Discussions

What happens if I only enable ASM in BIG-IP Under System > Resource Provisioning

URL

Migration from i series 10200 with 1 child VCMP to r series 10900 series

Azure DP-100 Exam Questions

Deploying F5 WAF in front of Azure Web App Services

Related Content

Traffic Management User Interface Vulnerability: The Fix and Temporary Mitigation Options

management interface failover

Minimizing Security Complexity: Managing Distributed WAF Policies

Application Programming Interface (API) Authentication types simplified

Re: Management Certificate