F5 Logo MyF5
Search
  1. MyF5 Home
  2. BIG-IP System: SFC Manager Setup
  3. SFC Controller Setup
  4. SFC configuration results
  5. Viewing SFF configurations using TMSH
Manual Chapter : Viewing SFF configurations using TMSH

Applies To:

Show Versions Show Versions

BIG-IP LTM

  • 17.1.0, 17.0.0, 16.1.4, 16.1.3, 16.1.2, 16.1.1, 16.1.0, 16.0.1, 16.0.0, 15.1.10, 15.1.9, 15.1.8, 15.1.7, 15.1.6, 15.1.5, 15.1.4, 15.1.3, 15.1.2, 15.1.1, 15.1.0, 15.0.1, 15.0.0, 14.1.5, 14.1.4, 14.1.3, 14.1.2, 14.1.0, 14.0.1, 14.0.0
Manual Chapter

Viewing SFF configurations using TMSH

The following TMSH output shows the SFF configurations that the SFC controller creates, excluding PEM policy rules. (The SFC controller updates the
sfc-action
 field of existing rules but does not create them.)
This syntax shows the configuration for the SFFs only, and not for the other service nodes.
SFF1:

			root@(bigip1)(cfg-sync Standalone)(Active)(/Common)(tmos)# list net sfc
			
			net sfc chain sfc_chain1 {
			hops {
			0 {
			nexthop-endpoint-ip 4.100.5.30
			service-index 255
			}
			}
			path-id 761
			}
			net sfc sf sf1-1 {
			egress-interface sff-sf-vlan
			ingress-interface sf-sff-vlan
			ip-address 1.2.3.4
			}
			root@(bigip1)(cfg-sync Standalone)(Active)(/Common)(tmos)# list net tunnels 
			net tunnels tunnel __f5_sfc_app___tunnel {
			description "Created by F5-SFC-Agent"
			if-index 320
			key 100
			local-address 4.10.5.20
			profile __f5_sfc_app___profile
			}
			net tunnels vxlan __f5_sfc_app___profile {
			app-service none
			description "Created by F5-SFC-Agent"
			encapsulation-type vxlan-gpe
			flooding-type multipoint
			port 4790
			}
			
			root@(bigip1)(cfg-sync Standalone)(Active)(/Common)(tmos)# list net self
			net self __f5_sfc_app____non-floating {
			address 4.100.5.20/32
			description "Created by F5-SFC-Agent"
			traffic-group traffic-group-local-only
			vlan __f5_sfc_app___tunnel
			}
			net self 4.10.5.20 {
			address 4.10.5.20/24
			traffic-group traffic-group-local-only
			vlan external
			}
			
			root@(bigip1)(cfg-sync Standalone)(Active)(/Common)(tmos)# list ltm virtual
			ltm virtual __f5_sfc_app__ {
			creation-time 2018-06-06:19:08:30
			description "Created by F5-SFC-Agent"
			destination 0.0.0.0:any
			last-modified-time 2018-06-06:19:08:30
			mask any
			profiles {
			fastL4 { }
			}
			source 0.0.0.0/0
			translate-address disabled
			translate-port disabled
			vlans {
			__f5_sfc_app___tunnel
			}
			vlans-enabled
			vs-index 8
			}
			root@(bigip1)(cfg-sync Standalone)(Active)(/Common)(tmos)# list ltm virtual
			ltm virtual __f5_sfc_app__ {
			creation-time 2018-06-06:19:08:30
			description "Created by F5-SFC-Agent"
			destination 0.0.0.0:any
			last-modified-time 2018-06-06:19:08:30
			mask any
			profiles {
			fastL4 { }
			}
			source 0.0.0.0/0
			translate-address disabled
			translate-port disabled
			vlans {
			__f5_sfc_app___tunnel
			}
			vlans-enabled
			vs-index 8
			}
			root@(bigip1)(cfg-sync Standalone)(Active)(/Common)(tmos)# list pem policy 
			pem policy P1 {
			rules {
			Rule1 {
			http-redirect {
			redirect-url https://a.com
			}
			insert-content {
			tag-name abcd
			value-content 1
			}
			precedence 6
			}
			Rule2 {
			precedence 9
			sfc-action {
			path-name /Common/sfc_chain1
			}
			}
			}
			}
			pem policy P2 {
			rules {
			Rule8 {
			precedence 8
			sfc-action {
			path-name /Common/sfc_chain1
			}
			}
			}
			}
			pem policy P3 {
			rules {
			R1 {
			precedence 8
			}
			R2 {
			precedence 6
			sfc-action {
			path-name /Common/sfc_chain1
			}
			}
			R3 {
			precedence 3
			sfc-action {
			path-name /Common/sfc_chain1
			}
			}
			}
			}
SFF2:

			root@(bigip2)(cfg-sync Standalone)(Active)(/Common)(tmos)# list net sfc
			
			net sfc chain sfc_chain1 {
			hops {
			1 {
			nexthop-service sf2-1
			service-index 255
			}
			2 {
			nexthop-terminate
			service-index 254
			}
			}
			path-id 761
			}
			net sfc sf sf2-1 {
			egress-interface sf-tunnel
			ingress-interface sf-tunnel
			ip-address 10.192.17.224
			nsh-aware enabled
			}
			root@(bigip2)(cfg-sync Standalone)(Active)(/Common)(tmos)# list net tunnels 
			net tunnels tunnel __f5_sfc_app___tunnel {
			description "Created by F5-SFC-Agent"
			if-index 288
			key 100
			local-address 4.10.5.30
			profile __f5_sfc_app___profile
			}
			net tunnels vxlan __f5_sfc_app___profile {
			app-service none
			description "Created by F5-SFC-Agent"
			encapsulation-type vxlan-gpe
			flooding-type multipoint
			port 4790
			}
			root@(bigip2)(cfg-sync Standalone)(Active)(/Common)(tmos)# list net fdb tunnel 
			net fdb tunnel __f5_sfc_app___tunnel {
			records {
			ff:ff:ff:ff:ff:ff {
			endpoints { 4.10.5.20 4.10.5.30 }
			}
			}
			}
			root@(bigip2)(cfg-sync Standalone)(Active)(/Common)(tmos)# list ltm virtual
			ltm virtual __f5_sfc_app__ {
			creation-time 2018-06-06:19:08:47
			description "Created by F5-SFC-Agent"
			destination 0.0.0.0:any
			last-modified-time 2018-06-06:19:08:47
			mask any
			profiles {
			fastL4 { }
			}
			source 0.0.0.0/0
			translate-address disabled
			translate-port disabled
			vlans {
			__f5_sfc_app___tunnel
			}
			vlans-enabled
			vs-index 9
			}
Contact Support Contact Support

Have a Question?

Support and Sales >

About F5

Education

F5 Sites

Support Tasks




©2023 F5, Inc. All rights reserved.


Trademarks Policies Privacy California Privacy Do Not Sell My Personal Information