BIGIP system can't access internet with proxy

Question

Hi,
I'm trying to configure a LTM cluster to access internet through a proxy.
The goal is to re-activate licence in automatic mode.
I tried to configure the proxy parameters with this SOL:
"Optional: If the BIG-IP system connects to the Internet using a forward proxy server, set these system database variables.
Type tmsh modify sys db proxy.host value hostname to specify the host name of the proxy server.
Type tmsh modify sys db proxy.port value port_number to specify the port number of the proxy server."

But when I click on reactivate licence I have a timeout. 
If anyone had a solution.
Thanks

uni · Answer

Does DNS resolution work from the bash shell?

benjamin_legray · Answer

Yes the DNS resolution works perfectly from the bash shell. The proxy address is an IP address not an URL. When I launch a TCPDUMP during the re-activate licence trying I see the bigip contact activate.f5.com without the proxy settings. Thanks for your help.

cory_50405 · Answer

Can you ping from the LTM to the proxy server you are attempting to specify?&nbsp;

lcpwidgit · Answer

Hi, Did you have any luck with this?&nbsp;

lawrence_55075 · Answer

I'm wonder how to do this as well....but I'm unable to locate any SOL making claim for proxy for this.  If only OP had at least sited the whole SOL number....&nbsp;
The closest I could find that explained proxy was a "Manual Chapter: Setting Up IP Address Intelligence Blocking" which the applies to box only lists "BigIP ASM 11.2.0".&nbsp;
Well, I need this for BigIP LTM 11.5.1&nbsp;
For both automatic license check (should I want/need to upgrade to a newer version someday), or currently so the update check might tell me that I'm two HF's behind.  Which we had enabled for such desire.&nbsp;
The update check page didn't indicate that it was failing to connect....&nbsp;
Not sure what happened to my mailing list subscriptions.  Last release email I got was September 8th for 11.6.0....last security notification September 28th.  Need to know about these updates with our F5s being in scope for PCI.&nbsp;
Now have to explain why I'm jumping from HF4 to HF6, and prompted because our account manager had emailed our chief security officer....&nbsp;
The last time that happened, I had already applied the HF months ago....&nbsp;

Forum Discussion

BIGIP system can't access internet with proxy

9 Replies

Recent Discussions

ISP Bandwidth Utilization

Chrome V 124+ on MacOS - Virtual Server Access Issue

F5 Rseries HA

Geo Fence in ASM through irule for URI

google-visualization-issues

Related Content

Protecting the F5 BIG-IP AFM system with AFM Protocol Inspection System Checks

Federated AWS Console Access Made Easy: F5 BIG-IP Access Policy Manager Access Guided Configurations

Troubleshooting high CPU utilisation on BIG-IP systems

Protect an application exposed on Internet with F5 XC WAAP

Secure access to the BIG-IP system: Videos and procedures