UIE Persistence Record’s Client Addr field is not Populated

Issue

When viewing the UIE persistence records you observe that the Client Addr field is not populated.

root@f5ltm(Active)(tmos)# show ltm persistence persist-records all-properties
Sys::Persistent Connections
universal - 172.16.100.200:80 - 192.168.1.31:80
-----------------------------------------------------------
TMM           0
Mode          universal
Key           8ffa6c0012825a76b3b68d10a9c68ad3
Age (sec.)    4
Virtual Name  VS-172.16.100.200-80
Virtual Addr  172.16.100.200:80
Node Addr     192.168.1.31:80
Pool Name     POOL-172.16.100.200-80
Client Addr   ::

Reason

This occurs due to the way in which Client Addr is represented when multiple connections with the same key are processed by the same TMM.

Consider the following scenario, connection 1 is received by the F5, and processed by TMM0. A UIE persistence record is built, with the Client Addr field populated. A 2nd connection is then received (containing the same key) and processed by TMM1. As this is on a different TMM the UIE record from TMM0 is copied and the Client Addr field is populated with the client address.

Connection 1 (1.1.1.1) –> TMM0 –> Key=8ffa6c0012825a76b3b68d10a9c68ad3 Client Addr 1.1.1.1
Connection 2 (2.2.2.2) –> TMM1 –> Key=8ffa6c0012825a76b3b68d10a9c68ad3 Client Addr 2.2.2.2

However now consider the following, connection 1 is recieved by the F5, and processed by TMM0. A UIE persistence record is built, with the Client Addr field populated. A 2nd connection is then recieved (containing the same key) and processed by the same TMM (TMM0). As the connection has the same key and is on the same TMM the UIE record is not copied, instead the Client Addr field is represented by ::

Connection 1 (1.1.1.1) –> TMM0 –> Key=8ffa6c0012825a76b3b68d10a9c68ad3 Client Addr ::
Connection 2 (2.2.2.2) –> TMM0 –> Key=8ffa6c0012825a76b3b68d10a9c68ad3 Client Addr ::

Why does this matter ?

If non-unique keys are being used this can lead to a situation where a large amount of connections persist to a single host, should each client arrive on the same TMM. As each client performs a lookup of the single UIE persistence record the Age will be reset back to 0 seconds.

• Author
• Recent Posts

Rick Donato

Rick Donato is a Network Automation Architect/Evangelist and the founder of Packet Coders.

Latest posts by Rick Donato (see all)

• How to Configure a BIND Server on Ubuntu - March 15, 2018
• What is a BGP Confederation? - March 6, 2018
• Cisco – What is BGP ORF (Outbound Route Filtering)? - March 5, 2018

Want to become an F5 Loadbalancers expert?

Here is our hand-picked selection of the best courses you can find online:
F5 BIG-IP 101 Certification Exam – Complete Course
F5 BIG-IP 201 Certification Exam – Complete Course
and our recommended certification practice exams:
AlphaPrep Practice Tests - Free Trial