Manual Chapter : Device Service Clustering for vCMP Systems

Applies To:

Show Versions Show Versions

BIG-IP AAM

  • 13.1.5, 13.1.4, 13.1.3, 13.1.1, 13.1.0

BIG-IP APM

  • 13.1.5, 13.1.4, 13.1.3, 13.1.1, 13.1.0

BIG-IP Link Controller

  • 13.1.5, 13.1.4, 13.1.3, 13.1.2, 13.1.1, 13.1.0

BIG-IP Analytics

  • 13.1.5, 13.1.4, 13.1.3, 13.1.1, 13.1.0

BIG-IP LTM

  • 13.1.5, 13.1.4, 13.1.3, 13.1.1, 13.1.0

BIG-IP AFM

  • 13.1.5, 13.1.4, 13.1.3, 13.1.1, 13.1.0

BIG-IP PEM

  • 13.1.5, 13.1.4, 13.1.3, 13.1.1, 13.1.0

BIG-IP DNS

  • 13.1.5, 13.1.4, 13.1.3, 13.1.1, 13.1.0

BIG-IP ASM

  • 13.1.5, 13.1.4, 13.1.3, 13.1.1, 13.1.0
Manual Chapter

Overview: Device service clustering for vCMP systems

One of the tasks of a vCMP® guest administrator is to configure device service clustering (DSC®). Using DSC, a guest administrator can implement config sync, failover, and mirroring across two or more chassis. Configuring DSC is the same on a vCMP system as on non-virtualized systems, except that the members of a device group are virtual devices (guests) rather than physical devices.

When configuring DSC, a guest administrator creates a device group that consists of vCMP guests as members, where each member is deployed on a separate chassis.

For example, a Sync-Failover device group in an active-standby configuration can consist of:

  • guest_A on chassis_1 and guest_A on chassis_2
  • guest_B on chassis_1 and guest_B on chassis_2
  • guest_C on chassis_1 and guest_C on chassis_2

Creating a device group that consists of guests on separate chassis ensures that if a chassis goes out of service, any active traffic groups on a guest can fail over to a device group member on another chassis.

This illustration shows this DSC configuration. The illustration shows two four-slot chassis, with four guests on each chassis. Each guest and its equivalent guest on the other chassis are homogeneous (same slot numbers and same number of cores) and form a separate Sync-Failover device group. Note that homeogeneous guests in a device group are only required when connection mirroring is enabled.

vCMP guests forming three device groups across two chassis

vCMP guests forming four device groups across two chassis

Required IP addresses for DSC configuration

This table describes the types of IP addresses that a guest administrator specifies when configuring device service clustering (DSC®) on a vCMP® system.

Table 1. Required IP addresses for DSC configuration on a vCMP system
Configuration feature IP addresses required
Device trust The cluster IP address that the vCMP host administrator assigned to the guest during guest creation.
Config sync Any non-floating self IP address on the guest that is associated with an internal VLAN on the host.
Failover
  • Recommended: A unicast non-floating self IP address on the guest that is associated with an internal VLAN on the host (preferably VLAN HA), as well as a multicast address.
  • Alternate to a multicast address: The guest-unique cluster member IP addresses assigned to all slots in the guest's cluster.
Connection mirroring For both the primary and the secondary IP addresses, a non-floating self IP address on the guest that is associated with an internal VLAN on the host. The secondary address is optional.

Failover methods for vCMP guests

Each traffic group in a device service clustering (DSC®) device group has a property known as a failover method. The failover method dictates the way that the system chooses a target device for failover. Available failover methods that the user can choose from are: load-aware failover, an ordered list, and an HA group.

The specific core allocation and slot assignments for a guest in a Sync-Failover device group determine the particular failover method that is appropriate for a DSC traffic group within the guest:

  • Guests in a device group that are identical in terms of core allocation and slot assignment are considered to be homogeneous guests. In this case, an ordered list would be an appropriate failover method, since relative capacity is equal among all guests. Note that guests in a device group are required to be homogeneous when connection mirroring is enabled.
  • Guests in a device group that differ from one another in terms of core allocation and slot assignments are considered to be heterogeneous guests. In this case, load-aware failover is an appropriate failover method because the guest administrator can define a relative capacity and relative traffic load for each guest. For example, an eight-core, four-slot guest has a relative capacity that is twice that of a four-core, two-slot guest. Note that you cannot enable connection mirroring for heterogeneous guests in a device group.
Important: For guests in a device group, you can enable connection mirroring for homogeneous guests only, that is, guests that are assigned to the same slot numbers with the same number of cores.

An additional type of failover method is an HA group, which applies to both homogeneous and heterogeneous guests.

About HA groups for vCMP systems

For failover configuration, an alternative to using load-aware failover or an ordered list is to use HA groups. An HA group is a specification of certain pools or host trunks (or any combination of these) that a guest administrator associates with a traffic group instance. The most common reason to configure an HA group is to ensure that failover is triggered when some number of trunk members become unavailable.

The BIG-IP® system uses an HA group to calculate an overall health score for the instance of a traffic group on a guest. The instance of a traffic group that has the best overall score at any given time becomes or remains the active traffic group instance. With an HA group, the system triggers failover of a traffic group based on changes to trunk or pool health instead of on system, gateway, or VLAN failure.

Because trunks and HA groups are never synchronized among guests as part of a config sync operation, you must assign a separate HA group to each traffic group instance. For example, you could create ha_group_A to reference the host trunk my_trunk and assign the HA group to traffic-group-1 on guest_A. You could then create another HA group, ha_group_B, to also reference my_trunk and assign the HA group to the same traffic group (traffic-group-1)on guest_B.

About connection mirroring for vCMP systems

Connection mirroring is a device service clustering (DSC®) feature that allows a device to mirror its connection and persistence information to another device. Connection mirroring prevents interruption in service during failover. On a vCMP® system, the devices that mirror their connections to each other are virtual devices (vCMP guests).

Important: When you enable connection mirroring within a device group, a guest can only mirror its connections to one other guest. In this case, the two guests must be homogenous. That is, as mirrored peers, the guests must each reside on a separate chassis where the two chassis and the guests' blades are the same model. Also, the guests must have the same number of slots assigned, on the same slot numbers, and with the same number of cores per slot.

About switchboard failsafe and vCMP guests

If a vCMP® guest is a member of a device group, make sure the guest's switchboard failsafe setting is set to the default value. If you need to change the default switchboard failsafe configuration, always do this on the vCMP host, and not the guest.