Guys, I hope that there is someone who can help me. After investing days now to get F5 loadbalancer and Cloudstack (4.2.1 build from sources) I'm pretty much stuck, mostly due to lack of information and documentation.
I got to a point now where Cloudstack wants to provision a VLAN to spin up the first VR but it just bails out, what ever I do. Even worse it makes no sense, the VLAN is created on the F5 so I guess there is just a bug going on : *Error Message cloudstack :* 2013-11-09 22:03:49,041 DEBUG [agent.transport.Request] (Job-Executor-25:job-71 = [ 081a9bd4-6d4d-40d2-9868-48f6aca0116e ]) Seq 7-671875076: Sending { Cmd , MgmtId: 110493122496, via: 7, Ver: v1, Flags: 100011, [{"com.cloud.agent.api.ro uting.IpAssocCommand":{"ipAddresses":[{"accountId":1,"sourceNat":true,"add":true,"oneToOneNat":false,"firstIP":false,"vlanId":"651","vlanGateway":"10.161.2.168","vlanNetmask":"255.255.254.0","networkRate":200}],"accessDetails":{},"wait": 0}}] } 2013-11-09 22:03:49,041 DEBUG [agent.transport.Request] (Job-Executor-25:job-71 = [ 081a9bd4-6d4d-40d2-9868-48f6aca0116e ]) Seq 7-671875076: Executing: { Cmd , MgmtId: 110493122496, via: 7, Ver: v1, Flags: 100011, [{"com.cloud.agent.api .routing.IpAssocCommand":{"ipAddresses":[{"accountId":1,"sourceNat":true,"add":true,"oneToOneNat":false,"firstIP":false,"vlanId":"651","vlanGateway":"10.161.2.168","vlanNetmask":"255.255.254.0","networkRate":200}],"accessDetails":{},"wai t":0}}] } 2013-11-09 22:03:49,042 DEBUG [agent.manager.DirectAgentAttache] (DirectAgent-220:null) Seq 7-671875076: Executing request 2013-11-09 22:03:49,316 DEBUG [network.resource.F5BigIpResource] (DirectAgent-220:null) Creating a guest VLAN with tag 651 2013-11-09 22:03:49,398 ERROR [network.resource.F5BigIpResource] (DirectAgent-220:null) *Failed to execute IPAssocCommand due to com.cloud.utils.exception.ExecutionException: Failed to create vlan with tag 651* 2013-11-09 22:03:49,467 ERROR [network.resource.F5BigIpResource] (DirectAgent-220:null) Retrying IpAssocCommand. Number of retries remaining: 1 2013-11-09 22:03:49,662 DEBUG [network.resource.F5BigIpResource] (DirectAgent-220:null) Creating a guest VLAN with tag 651 2013-11-09 22:03:49,685 ERROR [network.resource.F5BigIpResource] (DirectAgent-220:null) Exception caught in Networking::urn:iControl:Networking/VLAN::create() Exception: Common::OperationFailed primary_error_code : 16908390 (0x01020066) secondary_error_code : 0 error_string : 01020066:3: The requested VLAN (/Common/vlan-651) already exists in partition Common. 2013-11-09 22:03:49,685 ERROR [network.resource.F5BigIpResource] (DirectAgent-220:null) Failed to execute IPAssocCommand due to com.cloud.utils.exception.ExecutionException: Exception caught in Networking::urn:iControl:Networking/VLAN::c reate() Exception: Common::OperationFailed primary_error_code : 16908390 (0x01020066) secondary_error_code : 0 error_string : 01020066:3: The requested VLAN (/Common/vlan-651) already exists in partition Common. 2013-11-09 22:03:49,701 DEBUG [storage.secondary.SecondaryStorageManagerImpl] (secstorage-1:null) Zone 1 is ready to launch secondary storage VM 2013-11-09 22:03:49,765 ERROR [network.resource.F5BigIpResource] (DirectAgent-220:null) Retrying IpAssocCommand. Number of retries remaining: 0 2013-11-09 22:03:49,910 DEBUG [cloud.consoleproxy.ConsoleProxyManagerImpl] (consoleproxy-1:null) Zone 1 is ready to launch console proxy 2013-11-09 22:03:49,956 DEBUG [network.resource.F5BigIpResource] (DirectAgent-220:null) Creating a guest VLAN with tag 651 2013-11-09 22:03:49,976 ERROR [network.resource.F5BigIpResource] (DirectAgent-220:null) Exception caught in Networking::urn:iControl:Networking/VLAN::create() Exception: Common::OperationFailed primary_error_code : 16908390 (0x01020066) secondary_error_code : 0 error_string : 01020066:3: The requested VLAN (/Common/vlan-651) already exists in partition Common. 2013-11-09 22:03:49,977 ERROR [network.resource.F5BigIpResource] (DirectAgent-220:null) Failed to execute IPAssocCommand due to com.cloud.utils.exception.ExecutionException: Exception caught in Networking::urn:iControl:Networking/VLAN::create() Exception: Common::OperationFailed primary_error_code : 16908390 (0x01020066) secondary_error_code : 0 error_string : 01020066:3: The requested VLAN (/Common/vlan-651) already exists in partition Common. 2013-11-09 22:03:49,977 DEBUG [agent.manager.DirectAgentAttache] (DirectAgent-220:null) Seq 7-671875076: Response Received: *Errors I see in the LTM log:* *Nov 9 22:03:48 f5-ltmve-001 err mcpd[6030]: 01020066:3: The requested VLAN (/Common/vlan-651) already exists in partition* *Nov 9 22:03:48 f5-ltmve-001 err mcpd[6030]: 01020066:3: The requested VLAN (/Common/vlan-651) already exists in partition* Unfortunately the VLAN has been created that's why I see two errors (retry parameter in cloudstack is 2) in F5 and 3 in cloudstack. [root@f5-ltmve-001:Active:Standalone] config # tmsh show /net vlan vlan-651 ------------------------------------- Net::Vlan: vlan-651 ------------------------------------- Interface Name vlan-651 Mac Address (True) 52:54:00:07:58:7c MTU 1500 Tag 651 ----------------------- | Net::Vlan-Member: 1.1 ----------------------- | Tagged yes --------------------------------------------------------------- | Net::Interface | Name Status Bits Bits Pkts Pkts Drops Errs Media | In Out In Out --------------------------------------------------------------- | 1.1 up 463.4M 22.0K 918.1K 32 0 0 none What I basically did to get to this point is just compile 4.2.1 branch in nonoss mode and use the icontrol 11.4.1 matching my F5 LTM (virtual edition) 11.4 For what it's worth, I attached my network offering I used last, but I did try shared guest mode too, same result. count = 1 networkoffering: name = F5 id = 001ccca1-0a3a-47ba-bd62-ebbc4ef3fbeb availability = Optional conservemode = False displaytext = F5 egressdefaultpolicy = True forvpc = False guestiptype = Shared isdefault = False ispersistent = False maxconnections = 8192 networkrate = 200 service: name = Dns provider: name = VirtualRouter ================================================================================ name = UserData provider: name = VirtualRouter ================================================================================ name = Lb capability: name = SupportedLBIsolation canchooseservicecapability = False value = shared ================================================================================ name = ElasticLb canchooseservicecapability = False value = false ================================================================================ name = InlineMode canchooseservicecapability = False value = false ================================================================================ provider: name = F5BigIp ================================================================================ name = Dhcp provider: name = VirtualRouter ================================================================================ serviceofferingid = 08caae2d-4708-4f74-aa1d-1029464221a3 specifyipranges = True specifyvlan = True state = Enabled traffictype = Guest Created bug CLOUDSTACK-5119 now to find out what's going on. I will leave this environment available to debugging but I'm going to continue to test the F5 support in other IAAS solutions. I'm also open to downgrade the F5 loadbalancer to a 10.x version Thanks in advance, Bjoern