Forum Discussion

DennisK_23210's avatar
DennisK_23210
Icon for Nimbostratus rankNimbostratus
Apr 13, 2018

What's the best way to monitor a multi-port member?

We currently have 11 applications in tomcat that we want to put behind VirtualIPs so we can manage which member PORTS are down for migrations or issues since our service management software isn't smart enough to detect whether the tomcat port is active or not.

We have 8 environments and I was thinking I could make only 1 VIP per environment instead of 11 but using port "0 (any)" on both the Virtual and the Pool.

10.10.10.10:any
    1.1.1.1:any
    1.1.1.2:any
    1.1.1.3:any

app1 = 8443
app2 = 8543
app3 = 8643
appN = 8343+(100*N)

I want to monitor the application ports in such a way that ONLY the port for a specific app on a specific member is disabled. I understand how to down a member if any port is unavailable.

For example, if we are doing a migration on App1 is it possible to stop traffic to 1.1.1.1:8443 while still allowing traffic to other ports on 1.1.1.1?

My fall back in case this is not possible is to create 88 virtuals (one for each application/environment pair) and 8 more virtuals any time we add a new application.

Any hints on how to avoid this are greatly appreciated!

application delivery
BIG-IP
devops

3 Replies

Sort By
  • jaikumar_f5's avatar
    jaikumar_f5
    Icon for MVP rankMVP
    Apr 14, 2018

    Your question is bit confusing to understand, Can you please explain more.

     

    • How is your app1 is accessed. FQDN ? How many servers are hosting the app1
    • How is your app2 is accessed. FQDN ? How many servers are hosting the app1
    • How many apps are there in your environment ?

    If you properly configure the setup, yes you can disable a particular member (stop traffic to 1.1.1.1:8443) and still be able to send to other members.

     

  • Surgeon's avatar
    Surgeon
    Ret. Employee
    Apr 14, 2018

    What is the reason for such complexity? What is the problem with configuring VIP per port? You will get more flexibility and and config simplicity. You can manage all your VIP in very simple way. If something goes wrong you can easily can troubleshoot it.

     

    In case if you do what you want, your box will be busy running irule and all the monitors to calculate where to allow traffic to go.

     

  • DennisK_23210's avatar
    DennisK_23210
    Icon for Nimbostratus rankNimbostratus
    Apr 16, 2018

    All apps are accessed by FQDN and port. There are between 2 (dev) and 12 (prod) servers hosting each environment. All apps are hosted by all servers in that environment. We currently have 11 apps but more are coming.

     

    That's good to hear. What's considered proper in this case?