Simple load balancing with bigip

Datetime:2016-08-22 23:55:30          Topic: Load Balancing  VPS           Share

Lab information

2x DVWA servers in vmnet3

1x Lubuntu client in vmnet5

Use round robin as load balancing method.

DVWA has a login page, hence enable persistence source address.

Enable health monitor for the DVWA servers.

Create DVWA pool

DVWA has two servers namely and .131

root@(bigip1)(cfg-sync Standalone)(Active)(/Common)(tmos)# /ltm pool

root@(bigip1)(cfg-sync Standalone)(Active)(/Common)(tmos.ltm.pool)# create dvwa members add { } load-balancing-mode round-robin description "DVWA server pool"

Here we create two server pools that listen to http and chose the round robin as the load balancing method.

Create self ip for the DVWA virtual server

The lubuntu client actually terminates the server request on bigip, the virtual server is the server that is answering the request. In order for the virtual server to answer this request, a self ip has to be created first.

root@(bigip1)(cfg-sync Standalone)(Active)(/Common)(tmos.ltm.pool)# /net self

root@(bigip1)(cfg-sync Standalone)(Active)(/Common)( create dvwa-ip address vlan vmnet3 description "DVWA virtual address"

Create virtual server to answer Lubuntu’s request

root@(bigip1)(cfg-sync Standalone)(Active)(/Common)( /ltm virtual

root@(bigip1)(cfg-sync Standalone)(Active)(/Common)(tmos.ltm.virtual)# create dvwa source destination profiles add { fastL4 } pool dvwa ip-protocol tcp persist replace-all-with { source_addr }

Here I configured the expected source address which I put vmnet5 subnet, and also the destination server which was the selfip which i created.

I also attached the dvwa pool and enabled source address persistence.

What this persistence does is to ensure the same source address always hit the same server within a session.

Do a save configuration before testing.

root@(bigip1)(cfg-sync Standalone)(Active)(/Common)(tmos.ltm.virtual)# save /sys config

Saving running configuration...




Saving Ethernet mapping...done


Enable health monitor for DVWA pool

Before the health monitor is enabled, the status of the virtual server is unknown.

The following command line enables the health monitor.

root@(bigip1)(cfg-sync Standalone)(Active)(/Common)(tmos)# /ltm monitor

root@(bigip1)(cfg-sync Standalone)(Active)(/Common)(tmos.ltm.monitor)# create http dvwa-monitor username admin password password

I created a http monitor known as dvwa-monitor from the http monitor template, I added the username and password of the DVWA.

root@(bigip1)(cfg-sync Standalone)(Active)(/Common)(tmos.ltm.monitor)# /ltm pool

root@(bigip1)(cfg-sync Standalone)(Active)(/Common)(tmos.ltm.pool)# modify dvwa monitor dvwa-monitor description "To monitor DVWA status"

root@(bigip1)(cfg-sync Standalone)(Active)(/Common)(tmos.ltm.pool)# save /sys config

About List