Recently we have been uplifting our current F5 hardware from 10.2 to 11.1 hotfix 1 and I wanted to share a useful command to show active connections coming from a particular virtual server
We have been using b conn command on the command line
For example on the command line enter:
b conn show all – Will show all active connections from all virtual servers (may take a minute or two to come back)
b conn protocol 443 – Will show all active connections from all virtual servers using port 443
b conn | grep 10.2.2.1 – Will show all active connections from the virtual server with an IP address of 10.2.2.1
I hope these examples are helpful in 11.x the command is a little different you have to use tmsh
For example on the command line enter:
tmsh – Enters tmos
show sys connection all – Will show all active connections from all virtual servers (may take a minute or two to come back)
show sys connection cs-client-addr 10.2.2.1 – Will show all active connections from the virtual server with an IP address of 10.2.2.1
show sys connection cs-client-port 443 – Will show all active connections from all virtual servers using port 443
If you want to kill a session from an ip source or ip destination by port you can use the following by using some of the above:
tmsh delete sys connection