F5 Newbie - Just Starting

Cirrus

Jun 08, 2009

1. ) You are now ready to setup a Virtual Server (VS), which has fields to put in the name, IP address, and port, then select the pool you created. You don't need a route (at least on the BIG-IP LTM) to make it work, assuming the internal address on the LTM is the virtual machine's default gateway and if not, enable SNAT AutoMap on the VS during configuration (under Advanced settings). After you save the configuration for the VS, you should be good to go.

2. ) If you want to be able to route external requests directly to the virtual machines (for administration, etc.) then you need a route on the upstream router/firewall with a gateway of the BIG-IP shared self-IP address on the DMZ network. Example: If DMZ = 192.168.1.0 and internal = 172.16.1.0, do a "route add 172.16.1.0 netmask 255.255.255.0 gateway 192.168.1.1", where 192.168.1.1 is the BIG-IP external shared self-IP on that network). Again, gateway for servers must be 172.16.1.1, the internal shared self-IP.

As suggested earlier, you may want to check the Deployment Guide for a step-by-step process with illustrations on the VS creation (routing info is not in deployment guides) - but the information above covers the major steps.

/mh

Forum Discussion

F5 Newbie - Just Starting

Recent Discussions

BWC iRule

Citrix XenServer Big-IP Upgrade help

iRule condition - request contains more than 10000 parameters

Hi All, We have viprion 4300 with 4450 blades with 6 blades all blades having same configuration

Can iRule be used to perform exception of IPI category based on Geolocation

Related Content

Getting Started

Getting Started with BIG-IP Next: Fundamentals

Getting Started with BIG-IP Next: Migrating an Application Workload

Get Started with WAAP Security Incidents

Getting Started with BIG-IP Next: Upgrading Instances