vs被disable后，F5还能命中吗

环境 9.3.1HF4

VS disable，virtual address 没有disable

此时telnet 该VS，b conn 显示有链接（当然访问是不通的）,抓包显示如下：  58.31.255.91是client，188.188是被disable的VS

当idle-timeout时间到后，F5发送一个RST包，本例idle时间是5分钟

[root@t:Active] config # tcpdump -ni 0.0 host 58.31.255.91 and not port 22
tcpdump: listening on 0.0
20:18:54.941384 802.1Q vlan#4093 P0 58.31.255.91.60181 > 123.188.188.188.http: S 2776348978:2776348978(0) win 16384 <mss 1260,nop,nop,sackOK> (DF)
20:18:54.952451 802.1Q vlan#4093 P0 123.199.249.1 > 58.31.255.91: icmp: time exceeded in-transit (DF)
20:18:57.940119 802.1Q vlan#4093 P0 58.31.255.91.60181 > 123.188.188.188.http: S 2776348978:2776348978(0) win 16384 <mss 1260,nop,nop,sackOK> (DF)
20:18:57.949116 802.1Q vlan#4093 P0 123.199.249.1 > 58.31.255.91: icmp: time exceeded in-transit (DF)
20:19:03.857743 802.1Q vlan#4093 P0 58.31.255.91.60181 > 123.188.188.188.http: S 2776348978:2776348978(0) win 16384 <mss 1260,nop,nop,sackOK> (DF)
20:19:03.866777 802.1Q vlan#4093 P0 123.199.249.1 > 58.31.255.91: icmp: time exceeded in-transit (DF)
20:24:03.699994 802.1Q vlan#4093 P0 123.188.188.188.http > 58.31.255.91.60181: R 0:0(0) ack 2776348979 win 0 (DF)

------------

当在F5上自己telnet 自己的这个被禁用的VS 时，F5会很快发送一个RST包：

20:31:35.969918 802.1Q vlan#4093 P0 123.199.249.200.43382 > 123.199.249.19.http: S 4280551453:4280551453(0) win 5840 <mss 1460,nop,nop,sackOK,nop,wscale 0> (DF) [tos 0x10]
20:31:35.969968 802.1Q vlan#4093 P0 arp who-has 123.199.249.19 tell 123.199.249.200
20:31:38.963445 802.1Q vlan#4093 P0 123.199.249.200.43382 > 123.199.249.19.http: S 4280551453:4280551453(0) win 5840 <mss 1460,nop,nop,sackOK,nop,wscale 0> (DF) [tos 0x10]
20:31:38.963475 802.1Q vlan#4093 P0 arp who-has 123.199.249.19 tell 123.199.249.200
20:31:40.963439 802.1Q vlan#4093 P0 arp who-has 123.199.249.19 tell 123.199.249.200
20:31:40.963453 802.1Q vlan#4093 P0 arp reply 123.199.249.19 is-at 0:1:d7:93:ab:2
20:31:43.399653 802.1Q vlan#4093 P0 123.199.249.19.http > 123.199.249.200.43382: R 0:0(0) ack 4280551454 win 0 (DF)

--------------------

对于UDP包，F5一样可以命中，并产生conn条目，只是不会对后端pool发送数据而已。

VIRTUAL any:any <-> NODE 123.147.160.19:60000
    CLIENTSIDE 123.147.160.200:59372 <-> 123.147.160.19:60000
        (pkts,bits) in = (419, 160848), out = (0, 0)
    SERVERSIDE 123.147.160.200:59373 <-> 123.147.160.19:60000
        (pkts,bits) in = (0, 0), out = (419, 160848)
    PROTOCOL udp   UNIT 1   IDLE 37 (300)   LASTHOP 4093 00:21:a0:a5:77:41
VIRTUAL any:any <-> NODE 123.147.160.19:60000
    CLIENTSIDE 123.147.160.200:60811 <-> 123.147.160.19:60000
        (pkts,bits) in = (419, 160848), out = (0, 0)
    SERVERSIDE 123.147.160.200:59317 <-> 123.147.160.19:60000
        (pkts,bits) in = (0, 0), out = (419, 160848)
    PROTOCOL udp   UNIT 1   IDLE 37 (300)   LASTHOP 4093 00:21:a0:a5:77:41
VIRTUAL any:any <-> NODE 123.147.160.19:60000
    CLIENTSIDE 58.31.255.91:60811 <-> 123.147.160.19:60000
        (pkts,bits) in = (419, 160848), out = (0, 0)
    SERVERSIDE 123.147.160.200:60811 <-> 123.147.160.19:60000
        (pkts,bits) in = (0, 0), out = (419, 160848)
    PROTOCOL udp   UNIT 1   IDLE 38 (300)   LASTHOP 4093 00:21:a0:a5:77:41