Unable to delete and create virtual server in the same transaction via iControl api

The error you posted suggests that in your create you are trying to create a profile that already exists, /Common/tcp. I would verify that your create statement isn't trying to recreate the built in /Common/tcp profile.

@Brad Parker

Thanks for taking interest in this post. Duplicate profile was my initial thought as well. But running the code without transactions works fine, which suggests that there is more to it. I think we're on the right track, but the create(serveDef, wMasks, serveRes, serverProf) method does not create* the profiles based on args passed in, it just creates the virtual servers with the profiles passed in as arg according to docs. https://devcentral.f5.com/wiki/iControl.LocalLB__VirtualServer__create.ashx

btw the args in create() were prepared before the transaction began so it occurs real-time and no errors were thrown because of them.

I'm not sure this would work. From a logical perspective, the VS exists before the transaction, then doesn't exist, then does again. Can the deletion be rolled back if the roll back (on a failure) and a successful transaction both produce the same result (the VS exists).

I'd suggest it would be better (or at least possible) to add and remove profiles as necessary. More code but something that can be reasonably rolled back.

Hello What Lies Beneath!

Thanks for your response. I think you're on the right track with the profile. However, i'm not convinced that adding & removing VS in the same transaction shouldn't* work. I think one of the core motivations behind the transaction was to bridge the gap between "remove" and "add" by emulating a "update" feature since iControl does not provide atomic operations for updating numerous objects.

https://devcentral.f5.com/articles/v11-icontrol-transactions This post discusses the behavior of transaction and shows that pools are added and then removed, which highlights both failure and success "produce the same result". I can also confirm that deleting an iRule and then creating it (repeated several times) in the same transaction works flawlessly.

Having said that, I think you're right about the profile. I don't mind writing additional code if I can recreate virtual server and then add the protocol client/server profiles immediately after (it'll just have to be in the same transaction). However, the docs for create virtual server requires associated profiles to be specified in the args. In fact, if you attempt to remove the client profile, it would default to "TCP" and if you try to remove the server profile, it would default to "client profile". The reason, i believe, is that the protocol profiles are required for the virtual server to behave properly. See post on similar issue: https://devcentral.f5.com/questions/virtualserveradd_profile-cannot-set-a-new-client-protocol-profile

In the end, what I really need is a way to update a virtual server in one atomic operation or with rollback feature in order to eliminate risk of outage. If you have a workaround, even better if it is compatible with f5 v9/10, that would be awesome! Thanks!