F5 BIG-IP - LTM CLI Commands

From IT-Arts.net
Revision as of 08:11, 18 February 2026 by Admin (talk | contribs) (Created page with "Category:Wiki '''''[https://it-arts.net/index.php/Category:Wiki Return to Wiki Index]''''' == Viewing System Information == To display system information, including the software version, platform, and other relevant details, use the following command: <nowiki> tmsh show sys version</nowiki> This command will output the software version, platform type, and more. == Managing Configuration Files == You can list, view, and manage system configuration files. The co...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)


Return to Wiki Index


Viewing System Information

To display system information, including the software version, platform, and other relevant details, use the following command: 

tmsh show sys version

This command will output the software version, platform type, and more.

Managing Configuration Files

You can list, view, and manage system configuration files. The command below displays all configuration files: 

tmsh list /sys config

To view a specific configuration file, use: 

tmsh show /sys config <filename>

Viewing System Status

To view the overall status of the system, including all major components, run: 

tmsh show sys status

This shows the status of hardware, software, and critical system components.

Network Configuration

Viewing Network Interfaces

To list the available network interfaces, run: 

tmsh show net interface

This command displays all physical interfaces and their status, including throughput and error counts.

Configuring Network Interfaces

To configure a specific network interface, use the following command: 

tmsh modify /net interface <interface_name> mtu <mtu_value> address <ip_address> netmask <netmask_value>

For example, configuring `eth0` with an MTU of 1500, IP address `192.168.1.10`, and netmask `255.255.255.0` would be: 

tmsh modify /net interface eth0 mtu 1500 address 192.168.1.10 netmask 255.255.255.0

Viewing Routing Information

To show routing information, including routes, use: 

tmsh show net route

This command outputs the active routes in the routing table.

LTM (Local Traffic Manager) Configuration

Viewing Pools

To view the configuration and status of load balancing pools, use: 

tmsh show ltm pool

This command provides a list of all configured pools, along with their status, members, and other relevant details.

Creating and Managing Pools

To create a new pool, the following command can be used: 

tmsh create ltm pool <pool_name> members add { <ip_address>:<port> }

For example: 

tmsh create ltm pool mypool members add { 192.168.1.20:80 192.168.1.21:80 }

To modify a pool, use the `modify` keyword, and to delete a pool, use the `delete` keyword: 

tmsh modify ltm pool mypool members add { 192.168.1.22:80 }
tmsh delete ltm pool mypool

Viewing Virtual Servers

To list the virtual servers and their statuses: 

tmsh show ltm virtual

This shows the configured virtual servers, their IP addresses, and their current status.

Creating and Managing Virtual Servers

To create a new virtual server, the following command is used: 

tmsh create ltm virtual <vs_name> destination <vs_ip>:<vs_port> pool <pool_name> profiles add { http }

For example: 

tmsh create ltm virtual myvirtualserver destination 192.168.1.100:80 pool mypool profiles add { http }

To modify or delete a virtual server, use the `modify` and `delete` commands respectively: 

tmsh modify ltm virtual myvirtualserver destination 192.168.1.101:80
tmsh delete ltm virtual myvirtualserver

SSL Configuration

Viewing SSL Profiles

To display SSL profile configurations, use the following command: 

tmsh show ltm profile client-ssl

This command lists the SSL profiles used by virtual servers for handling encrypted traffic.

Creating and Managing SSL Profiles

To create an SSL client profile, use: 

tmsh create ltm profile client-ssl <profile_name> cert <cert_file> key <key_file> options <ssl_options>

For example: 

tmsh create ltm profile client-ssl mysslprofile cert /config/ssl/certs/mycert.crt key /config/ssl/keys/mykey.key options { no-ssl-verify }

Viewing SSL Certificates

To display SSL certificates: 

tmsh show sys crypto cert

This command lists all the certificates installed on the system.

Traffic and Session Management

Viewing Active Connections

To view active connections on the system, run: 

tmsh show sys connection

This command displays all current connections, including the source and destination IPs, port numbers, and connection states.

Managing Sessions

To display the current user sessions, use: 

tmsh show /sys user session

This command provides a list of active user sessions along with their associated IP addresses.

System Diagnostics

Running a Packet Capture

To run a packet capture, the following command can be used: 

tcpdump -i <interface_name> -w /var/tmp/capture.pcap

For example, to capture packets on interface `eth0`: 

tcpdump -i eth0 -w /var/tmp/capture.pcap

System Logs

To view the system logs, run: 

tail -f /var/log/ltm

This command continuously displays logs from the Local Traffic Manager.

Viewing System Events

For viewing events logged by the system, use the following command: 

tmsh show sys event

This command shows a list of system events and their details.

Troubleshooting

Checking System Performance

To check the system's performance, including CPU and memory usage: 

tmsh show sys performance

This will display CPU and memory usage, as well as disk and network performance.

Checking System Health

To check the health status of various system components: 

tmsh show sys health

This command gives an overview of the system's health, including hardware status, disk health, and more.

Rebooting the System

To reboot the F5 BIG-IP system: 

reboot

This command will initiate a system reboot.


---

Return to Wiki Index

Retrieved from "https://it-arts.net/index.php?title=F5_BIG-IP_-_LTM_CLI_Commands&oldid=1119"