-
Console CLI is unavailable
We have several A10 Thunder 4440s that are unavailable via the console CLI. Upon connect, no login prompt appears and it appears to be in a sort of hung state. SSH connections work normally as expected. Is there a means of resetting the console CLI session so that login via console is available without rebooting the device?
-
Disable logging to console CLI session
Logins to several of our A10 Thunder 4440s via the console CLI are unavailable due to the log being output to the console. SSH logins work as normal. Pardon my ignorance but how do you turn off logging to the console so that console logins are available?
-
IP NAT POOL Port Usage
It seems that the NAT POOL Port capacity of each ADC module is different? Who has the relevant calculation method? I want to design a sufficient POOL for my environment and have provided it for use.
-
SSLi integrate with VM
Which topology should I use to connect Hardware SSLi with a VM security device. I tired single path L3 topology, still there's no traffic coming to the VM. How can I configure the SSLi-in to send decrypted traffic to a VM
-
How to change system device to gateway mode
Dears I can't use a10 model 3030s as a router mode . so how can I change system to gateway mode when issue command "show ip" appears "System is running in Transparent Mode " how can I solve this issue Thanks
-
Factory reset SSLi
Anyway to Factory reset A10 SSLi hardware. I tried creating new APP template, but it's giving error VLAN 850 already used for management services.
-
[T&C] Firewall with Application-based Rate-Limiting using Thunder CFW
In this article, we will see how you can use the Thunder CFW to rate-limit traffic on a per-application (or application category) basis. Objective Here, we want to rate-limit application traffic for each subscriber as follows: Social network traffic: upload speed = 1 Mbps, downlink speed = 2 Mbps FTP or TFTP traffic:…
-
health check service testing vs host logging
We are in the process of load balancing radius with ACOS 4.1.4-GR1-P2 with Direct Server return. The load balancing works well, and now I have some awkward consequences I need to deal with. The failover works when a health check is enabled and marks the service as offline if the service is not functional. so we need a…
-
aflex script requirement to evaluate host status
I am working on load balancing radius auth/acct to two MS NPS servers. The load balancing works and with radius there is a need to persist a radius client with the server that it happens to communicate with. The starting point for that is an aflex script found at…
-
ACOS non-FTA Code Upgrade from 2.7.2 to 4.1.4
If anyone has successfully perform an upgrade from 2.7.2 to 4.1.4 on ACOS non-FTA Code on two TH3030s with VCS and VRRP setup, it will be greatly appreciated if you can share some tips and recommendations. I've read some A10 documents about it but I'd like to hear if from those who actually perform the upgrade. Thank you…
-
CGN - Redir DNS Server
Hello! is it possible to redirect DNS requests to a specific host? Example: DNS configured (client) . 184.0.0.1 Redirect ALL to: 8.8.8.8 Tks
-
REST API and updating slb client-ssl server-name-list
I'm trying to automate uploading new SSL certs using the REST API. I can update the certificate-list okay, but now I'm working on SNI templates using server-name-list, and I can't get the request correct. I get: 'Failed to handle json field "server-name-list". JSON field should not be array type.'.
-
Scripiting questions (Aflex)
We are planing to use the TCP traffic to autenticate the UDP traffic on our TPS, but we have no idea how to proceed due to lack of documentation Its possible to do something like: when UDP_REQUEST { if { [TCP::connection] == 1 } [UDP::authenticate] elseif { [TCP::connection] == 0 } drop
-
How to add interfaces to an existing trunk-group in aVCS environment with ADP.
Hello everyone. I hope you are great. We have this problem: We have a cluster of two A10 Thunder 930 with aVCS and 8 L3V partitions. Both Thunder 930s have two Ethernet interfaces in a trunk group with LACP. All partitions (including the "shared" partition) use this trunk group. We need to add ethernet interfaces to the…
-
An issue of Link Load Balacing with ipv6
When I update the BW-List with IPv6,something wrong with that,following is the output: "BW-List was updated, but failed to parse file. There are 10 parse errors in line 1, 1, 2, 2, 3, 3, 4, 4, 5, 5 in Black-White List chinaalli_pv6."
-
Why we need to choose A10
why A10 is the best option, compare with competitor( F5, citrix, etc) ?
-
vcs disable - split vchassis in 2 standalone - will result in outage?
We have a pair of thunder 3040 used for CGNAT in vChassis mode. We need to split it in two Standalone nodes. We will do it using the command: "vcs disable" A colleague mentioned that no disruption will occur. But I would like to double-check it. I looked into "ACOS 4.1.4-GR1-P5 Configuring ACOS Virtual Chassis Systems"…
-
A10 + Horizon + Azure MFA
Anyone know if there is a setting on the A10 Load Balancer that I can enable/disable that would cause my Azure MFA to connect to my Horizon Desktop the first time but every other time after that it hangs unless I clear my browsing data? If I bypass the LB it works every time. Microsoft said that it may be adding some extra…
-
A10 AX3030 Not boot from ssd disk
I have a problem booting the system from the SSD disk. ACOS is loaded only from a CF drive. AX3030#show disk Total(MB) Used Free Usage ----------------------------------------- 949 825 123 86.9% Device Primary Disk ------------------------------ md0 Stopped md1 Active AX3030# AX3030#show bootimage (* = Default) Version…
-
New Partitions
Hi All, Total newbie here, please forgive dumb questions. We are running a Thunder 3030, and I'd like to add partitions to the 4 partitions we already have. Do I need to create a VLAN for each new partition and/or create a new subnet for each
-
Conversion from NetScaler to Acos (A10 system)
Hi community. Im a new member of this group. Im learning about the products ADC and CFW, so currently we have a project with the customer Telefonica Chile and we need know how we can homologate/convert configs from NetScaler (Citrix) to Acos software (A10) please. Thanks for your future comments.
-
How to use the a10.acos_axapi.a10_file_aflex module in Ansible
Hello, I am trying to deploy aflex scripts to an a10 load balancer in Ansible with the a10_file_aflex python module in the a10.acos_axapi Ansible collection. However, everytime I run my script, there are some weird errors that appear about the syntax of the structure of my ansible task and some mistakes of the aflex…
-
A issue about session persistence
Clients access the VIP by SSL VPN,all the client's ip was NAT to sslvpn ip-10.182.21.141,so the A10 load balalncing the request to single real server and port,the A10 use source ip persistence method. At the end,all other real server has no http request,all requst go to the same one real server-10.182.43.171:9002. so how…
-
Load Balancing IPSEC VPN UDP-500 & UDP-4500
Hi, I'm trying to load balance multiple client IPSEC VPN connections to 2 servers, this is part of a Microsoft Always-On VPN solution We have it working when I have just one server configured, but I think I need to manage the traffic so that the SRC hosts UDP-4500 traffic follows the same SRC hosts UDP-500 traffic so they…
-
how can we configure unequal load balance between two servers
We have two servers, we need to do upgrade for them, in order to decrease the users that will disconnect we need to do unequal load balance between them, anybody can advice how to do this kind of configuration thanks
-
[T&C] Harmony Controller: Send alerts to Microsoft Teams (Webhook URL)
In this article, we will look at configuring Harmony Controller to send alerts to a Microsoft Teams channel (webhook URL). Objective Here we have a Thunder device with the following virtual service: slb virtual-server DOH-VIP 100.64.1.250 port 53 dns-udp service-group SG-DNS template dns dns1 We want to monitor the status…
-
Health check did not work in GSLB
I have three ISP line,ISP1,ISP2 and ISP3. We check the ISP's health status with ICMP protocol,when ISP1 down,how to know the status?When ISP1 down,If the health check monitor go out through ISP2 or ISP3?So A10 can't know the ISP1 down.The health check monitor did not work.
-
Upgrade OS standard steps
What is the best practise steps for upgrade OS?😀
-
Radius LB DSR Mode
Hi Experts, Do you have a technical reference for load balancing Radius Server in DSR mode? The traffic flow will be something like this(see attached image). I am not really sure if this is the right behavior so I am asking if you can share some good references with regards to this deployment. Thank you.
-
[T&C] Automate Application Delivery Operation Tasks with A10 and HashiCorp NIA
This article describes how you can use Thunder ADC integrating with HashiCorp Network Infrastructure Automation (NIA) solution which focuses on Day-2 networking tasks automation that can reduce the burden on operators caused by manual ticketing systems. This solution consists of four components including HashiCorp…
