Forum Discussion

Micros_88999's avatar
Micros_88999
Icon for Nimbostratus rankNimbostratus
May 21, 2014

Ping problem after upgrade - 11.4

Hello,

 

I have problem with the ping command in tmsh.

 

We upgraded the system from 9.4.6 to 11.4, but the simple ping command doesn't work only if we use the run util ping.

 

When I use the ping command the system doesn't recognize it :

 

cshalasz@(cfg-sync In Sync)(Active)(/Common)(tmos) ping 1.1.1.1 Syntax Error: unexpected argument "ping"

 

We use at our other equipments the 11.4 native version and ping works correclty.

 

The settings are the same in GUI and in CLI too for other users.

 

cshalasz@(cfg-sync In Sync)(Active)(/Common)(tmos.auth.remote-user) list auth remote-user { default-role admin remote-console-access tmsh }

 

Please let us know what could be the problem. When I logged in as root I could use this command.

 

Best Regards,

 

Csaba

 

management
TMSH

7 Replies

Sort By
  • What_Lies_Bene1's avatar
    What_Lies_Bene1
    Icon for Cirrostratus rankCirrostratus
    May 21, 2014

    Looks like you are being dropped straight into tmsh when you connect. You need to use the Advanced Shell for straight ping. Go to System > Users > 'username' > Terminal Access.

     

  • Micros_88999's avatar
    Micros_88999
    Icon for Nimbostratus rankNimbostratus
    May 21, 2014

    Hello,

     

    I have problem with ping, bash is not an option, due to the fact that we have lot of scripts which use this command.

     

    Best Regards,

     

    Csaba

     

  • afedden_1985's avatar
    afedden_1985
    Icon for Cirrus rankCirrus
    May 21, 2014

    here ya go: run util ping xxxx@(MYLTM)(Active)(/Common)(tmos) run util ping 11.128.226.90 PING 11.128.226.90 (11.128.226.90) 56(84) bytes of data. 64 bytes from 11.128.226.90: icmp_seq=1 ttl=246 time=45.7 ms 64 bytes from 11.128.226.90: icmp_seq=2 ttl=246 time=45.5 ms 64 bytes from 11.128.226.90: icmp_seq=3 ttl=246 time=45.8 ms

     

  • Micros_88999's avatar
    Micros_88999
    Icon for Nimbostratus rankNimbostratus
    May 21, 2014
    add-on: - we now have 11.4.1 build 637 on several LTM units - most of them was installed and configured out-of-the box on 11.4.1 but we have an LTM 3900 pair, which was in production on lower version, which we`ve upgraded to 11.4.1 build 637 - we have several dozen scripts, which already uses simple "ping" command, and working well on all LTMs, except the upgraded one. We have two options: - find a solution, to make the upgraded 11.4.1 accept "ping" - modify all the scripts to use "run util ping" We would prefer the 1st option. We`ve found http://support.f5.com/kb/en-us/products/big-ip_ltm/releasenotes/product/relnote-ltm-11-4-1.html ID 377568 but we are not sure what user permissions we are missing. What to set, how to set.
  • Pavel_SK's avatar
    Pavel_SK
    Icon for Nimbostratus rankNimbostratus
    Oct 11, 2017

    I was able to do this workaround to make ping and other commands working directly from TMSH

    create cli alias shared bash { command "run /util bash" description "Run the bash shell" }
create cli alias shared ccmode { command "run /util ccmode" description "Use Common Criteria mode settings" }
create cli alias shared dig { command "run /util dig" description "Interrogate DNS name servers" }
create cli alias shared domain-tool { command "run /util domain-tool" description "Manage Kerberos Host identities" }
create cli alias shared fips-card-sync { command "run /util fips-card-sync" description "Synchronize FIPS hardware security modules of a redundant system" }
create cli alias shared fips-util { command "run /util fips-util" description "Configures and maintains a FIPS security domain on a redundant system" }
create cli alias shared gencert { command "run /util gencert" description "Create self-signed certificate key pairs and certificate signing requests" }
create cli alias shared get-ccn-dossier { command "run /util get-ccn-dossier" description "Display system information for CCN sites" }
create cli alias shared get-dossier { command "run /util get-dossier" description "Display info about system dossier" }
create cli alias shared imish { command "run /util imish" description "Shell to configure dynamic routing" }
create cli alias shared netstat { command "run /util netstat" description "Display network connections, routing tables, interface statistics, masquerade connections, and multicast memberships" }
create cli alias shared ping { command "run /util ping" description "Send ICMP echo requests to network hosts" }
create cli alias shared ping6 { command "run /util ping6" description "Send ICMPv6 echo requests to network hosts" }
create cli alias shared qkview { command "run /util qkview" description "Gather diagnostic information from a BIG-IP system" }
create cli alias shared racoonctl { command "run /util racoonctl" description "Racoon administrative control tool" }
create cli alias shared ssh-keyswap { command "run /util ssh-keyswap" description "Manage SSH keys" }
create cli alias shared ssldump { command "run /util ssldump" description "SSLv3/TLS network protocol analyzer" }
create cli alias shared tcpdump { command "run /util tcpdump" description "Display network traffic" }
create cli alias shared telnet { command "run /util telnet" description "Run the telnet utility." }
create cli alias shared test-monitor { command "run /util test-monitor" description "Test a user created external monitor" }
create cli alias shared tracepath { command "run /util tracepath" description "Trace a path to destination discovering MTU along this path" }
create cli alias shared tracepath6 { command "run /util tracepath6" description "Tracepath for IPv6" }
create cli alias shared traceroute { command "run /util traceroute" description "Trace a path to destination discovering delay along this path" }
create cli alias shared traceroute6 { command "run /util traceroute6" description "Traceroute for IPv6" }
create cli alias shared vconsole { command "run /util vconsole" description "Run vconsole utility" }
create cli alias shared zebos { command "run /util zebos" description "Utility to manage ZebOS routing modules" }

    I had 4 boxes (LTM2200 on 11.5.4), two HA pairs. both partitioned. On one unit pair, ping and other commands were available because when I listed:

    "list cli alias shared"

    I could see aliases for them. On other hand, on HA unit pair where it did not work, these aliases were not created/visible with "list cli alias shared". What is a little mystery for me, is that why those alias commands does not appear when you list full configuration of LTM, they only show with command "list cli alias shared"