-
aflex script requirement to evaluate host status
I am working on load balancing radius auth/acct to two MS NPS servers. The load balancing works and with radius there is a need to persist a radius client with the server that it happens to communicate with. The starting point for that is an aflex script found at…
-
ACOS non-FTA Code Upgrade from 2.7.2 to 4.1.4
If anyone has successfully perform an upgrade from 2.7.2 to 4.1.4 on ACOS non-FTA Code on two TH3030s with VCS and VRRP setup, it will be greatly appreciated if you can share some tips and recommendations. I've read some A10 documents about it but I'd like to hear if from those who actually perform the upgrade. Thank you…
-
CGN - Redir DNS Server
Hello! is it possible to redirect DNS requests to a specific host? Example: DNS configured (client) . 184.0.0.1 Redirect ALL to: 8.8.8.8 Tks
-
REST API and updating slb client-ssl server-name-list
I'm trying to automate uploading new SSL certs using the REST API. I can update the certificate-list okay, but now I'm working on SNI templates using server-name-list, and I can't get the request correct. I get: 'Failed to handle json field "server-name-list". JSON field should not be array type.'.
-
Scripiting questions (Aflex)
We are planing to use the TCP traffic to autenticate the UDP traffic on our TPS, but we have no idea how to proceed due to lack of documentation Its possible to do something like: when UDP_REQUEST { if { [TCP::connection] == 1 } [UDP::authenticate] elseif { [TCP::connection] == 0 } drop
-
How to add interfaces to an existing trunk-group in aVCS environment with ADP.
Hello everyone. I hope you are great. We have this problem: We have a cluster of two A10 Thunder 930 with aVCS and 8 L3V partitions. Both Thunder 930s have two Ethernet interfaces in a trunk group with LACP. All partitions (including the "shared" partition) use this trunk group. We need to add ethernet interfaces to the…
-
An issue of Link Load Balacing with ipv6
When I update the BW-List with IPv6,something wrong with that,following is the output: "BW-List was updated, but failed to parse file. There are 10 parse errors in line 1, 1, 2, 2, 3, 3, 4, 4, 5, 5 in Black-White List chinaalli_pv6."
-
Why we need to choose A10
why A10 is the best option, compare with competitor( F5, citrix, etc) ?
-
vcs disable - split vchassis in 2 standalone - will result in outage?
We have a pair of thunder 3040 used for CGNAT in vChassis mode. We need to split it in two Standalone nodes. We will do it using the command: "vcs disable" A colleague mentioned that no disruption will occur. But I would like to double-check it. I looked into "ACOS 4.1.4-GR1-P5 Configuring ACOS Virtual Chassis Systems"…
-
A10 + Horizon + Azure MFA
Anyone know if there is a setting on the A10 Load Balancer that I can enable/disable that would cause my Azure MFA to connect to my Horizon Desktop the first time but every other time after that it hangs unless I clear my browsing data? If I bypass the LB it works every time. Microsoft said that it may be adding some extra…
-
A10 AX3030 Not boot from ssd disk
I have a problem booting the system from the SSD disk. ACOS is loaded only from a CF drive. AX3030#show disk Total(MB) Used Free Usage ----------------------------------------- 949 825 123 86.9% Device Primary Disk ------------------------------ md0 Stopped md1 Active AX3030# AX3030#show bootimage (* = Default) Version…
-
New Partitions
Hi All, Total newbie here, please forgive dumb questions. We are running a Thunder 3030, and I'd like to add partitions to the 4 partitions we already have. Do I need to create a VLAN for each new partition and/or create a new subnet for each
-
Conversion from NetScaler to Acos (A10 system)
Hi community. Im a new member of this group. Im learning about the products ADC and CFW, so currently we have a project with the customer Telefonica Chile and we need know how we can homologate/convert configs from NetScaler (Citrix) to Acos software (A10) please. Thanks for your future comments.
-
How to use the a10.acos_axapi.a10_file_aflex module in Ansible
Hello, I am trying to deploy aflex scripts to an a10 load balancer in Ansible with the a10_file_aflex python module in the a10.acos_axapi Ansible collection. However, everytime I run my script, there are some weird errors that appear about the syntax of the structure of my ansible task and some mistakes of the aflex…
-
A issue about session persistence
Clients access the VIP by SSL VPN,all the client's ip was NAT to sslvpn ip-10.182.21.141,so the A10 load balalncing the request to single real server and port,the A10 use source ip persistence method. At the end,all other real server has no http request,all requst go to the same one real server-10.182.43.171:9002. so how…
-
Load Balancing IPSEC VPN UDP-500 & UDP-4500
Hi, I'm trying to load balance multiple client IPSEC VPN connections to 2 servers, this is part of a Microsoft Always-On VPN solution We have it working when I have just one server configured, but I think I need to manage the traffic so that the SRC hosts UDP-4500 traffic follows the same SRC hosts UDP-500 traffic so they…
-
how can we configure unequal load balance between two servers
We have two servers, we need to do upgrade for them, in order to decrease the users that will disconnect we need to do unequal load balance between them, anybody can advice how to do this kind of configuration thanks
-
[T&C] Harmony Controller: Send alerts to Microsoft Teams (Webhook URL)
In this article, we will look at configuring Harmony Controller to send alerts to a Microsoft Teams channel (webhook URL). Objective Here we have a Thunder device with the following virtual service: slb virtual-server DOH-VIP 100.64.1.250 port 53 dns-udp service-group SG-DNS template dns dns1 We want to monitor the status…
-
Health check did not work in GSLB
I have three ISP line,ISP1,ISP2 and ISP3. We check the ISP's health status with ICMP protocol,when ISP1 down,how to know the status?When ISP1 down,If the health check monitor go out through ISP2 or ISP3?So A10 can't know the ISP1 down.The health check monitor did not work.
-
Upgrade OS standard steps
What is the best practise steps for upgrade OS?😀
-
Radius LB DSR Mode
Hi Experts, Do you have a technical reference for load balancing Radius Server in DSR mode? The traffic flow will be something like this(see attached image). I am not really sure if this is the right behavior so I am asking if you can share some good references with regards to this deployment. Thank you.
-
[T&C] Automate Application Delivery Operation Tasks with A10 and HashiCorp NIA
This article describes how you can use Thunder ADC integrating with HashiCorp Network Infrastructure Automation (NIA) solution which focuses on Day-2 networking tasks automation that can reduce the burden on operators caused by manual ticketing systems. This solution consists of four components including HashiCorp…
-
Health Monitor and Expect Text
Good afternoon everyone, I am attempting to perform a health check on an application server that returns a long nested string. This is more than a 200 or even a Success! on a health monitor page but something more along the lines of the below.…
-
A10 Box #1
Is there anyone in the community that would be interested in acquiring the first box sold in North America. I have emails with A10 management that can prove this as I can also share the genealogy and information of how the sale went down, who was involved and other facts. The box was removed from service in working order…
-
[T&C] Firewall with Application Visibility using Thunder CFW
Thunder CFW offers Gi LAN services consolidation to combine L4–L7 functions, including CGNAT, stateful firewall, and application visibility to integrate greater efficiencies on the Gi LAN. In this article, we will look at how you can configure Thunder CFW for application-level visibility. First, make sure you have the…
-
Question for LB-method [Round Robin Strict]
Hi all, Does any one know how to work with Round Robin Strict method and when would it be useful to use this?
-
http response status stats
Hi, On ADC with ACOS 4.1.1 by default http response stats sampling works on real servers ports, but not on VIP. After upgrade to 4.1.4 situation was reversed - http response stats sampling works on VIPs, but not on real servers ports. Configuring on server port "sampling-enable all" (or specific field) do nothing. slb…
-
Terraform Provider
I've been messing around with Terraform and seeing what it can do. I've built just a basic config file to create a server with a few settings. All runs great. Then I start to "manually" change settings on the newly formed server in the ADC. I change the weight to '10' from the values of '1' that my config gave it. I re-run…
-
aFlex script to filter URL
Hi experts do you have aFlex script to filter the URL that the users are trying to reach to the internet. Basically, I have AC type class-list and URLs are configured on it. Once I have verified in aFlex that the URL which the user is trying to reach is on my class-list then I will redirect the traffic to a specific ISP.…
-
Migrate ADC
Hi everyone, I need your recommendation , what is the best way to migrate all my configuration of 1040 appliances to 3350. I tried use backup and restore, but some objects don't work properly and snmp trap don't Send nothing. Best regards
