Does BIG-IP use TMM route-table to reach LDAP Servers for auth?

Question

I'm trying to setup LDAP Authentication on a BIG-IP. This is the first time I do this, and it seems the BIG-IP cannot reach the LDAP server. ldapsearch form CLI return "Can't connect to LDAP Server (-1)"&nbsp;
I suspect a routing problem. I can ping the LDAP server if I specify the MGMT interface as source. If I dont, the ping fails. TMM only has a default route point towards the internet, that's away from the LDAP server.&nbsp;
Does the BIG-IP use the TMM route-table to reach LDAP Auth servers? Otherwise I would at least get a response, right?&nbsp;

amintej · Answer

Hello, you have to add a management route to ldap server. First check the availavble routes,

tmsh list sys management-route

If you don't have route to LDAP, you have to add it, use the next expression:
tmsh create /sys management-route  network / gateway

The BIG-IP system uses management routes to forward traffic through the management interface. For traffic sourced from the management address, the system prefers management routes over TMM routes and uses the most specific matching management route. If no management route is defined or matched, the system uses the most specific matching TMM route. If only a default gateway is defined as a management route, the system will prefer the TMM default gateway.

Forum Discussion

Does BIG-IP use TMM route-table to reach LDAP Servers for auth?

1 Reply

Recent Discussions

F5Access | MacOS Sonoma

Transaction looks successful but file not downloading

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

F5 Access Guard Deprecated: ZTA APM

F5 loadbalancer not working

Related Content

Re: Get Started with BIG-IP Virtual Edition (VE), BIG-IQ VE or BIG-IP Cloud Edition Trial

Use BIG-IP LTM Virtual Server & iRule for an internal "What's My IP" website

Quick Optimizations for F5 BIG-IP Virtual Edition

Getting Started with BIG-IP Next: Upgrading Central Manager

Deploying F5 BIG-IP with Azure Cross-region load balancer