Nimbostratus
NimbostratusStanislas Piron: your answer solved my case. Thank you! routing approach did the trick, no more TCP resets. I still think that bridging approach does make sense, and is even less complicated to set up. but: routing worked for me by the exact setup you explained, given that there's a default route with FWSM as a GW.
Hi,
You can use BIGIP as a router without SNAT.
create 2 VLANS Host_VLAN FW_VLAN Create 2 Self IPs 10.1.1.2/24 in Host_VLAN 10.1.2.2/24 in FW_VLAN Create 2 floating IPs for routing 10.1.1.1/24 in Host_VLAN 10.1.2.1/24 in FW_VLAN Configure FW to route Host_VLAN through BIGIP 10.1.1.0/24 GW 10.1.2.1 configure Hosts to route All traffic through BIGIP 0.0.0.0/0 GW 10.1.1.1 Configure One Forwarding IP VS for Hosts destination 0.0.0.0/0 VLAN Host_VLAN protocol : * All protocols configure one Forwarding IP VS for FW destination 10.1.1.0/24 VLAN FW_VLAN protocol : * All protocols
Nimbostratusit was my intention to mark yours, but it was given as a comment, while the topic answer was not indicative of the solution. that's why I copied your response to a new answer, which I marked. but now I'll change it.