Learn F5 Technologies, Get Answers & Share Community Solutions Join DevCentral

Filter by:
  • Solution
  • Technology
Answers

Deploying F5 to Replace Microsoft TMG

Hi Team,

I am replacing Microsoft Threat Management Gateway (TMG) with BIG IP F5 (LTM + ASM). With existing setup we have TMG as (ACE LB front end + TMG + ACE LB Back end) with different Vlans assigned like
Vlan X (Ace LB FE)-Vlan Y-(TMG)-Vlan Z-(Ace LB BE)-Vlan A. These all devices will be replaced with Single F5 (LTM+ASM)box.

So I just wanted to know that shall i go with Vlan X and Vlan A (Vlan Y, Z will not be in use) and their associated IP subnets.

Thanks Ganesh

0
Rate this Question

Answers to this Question

placeholder+image
USER ACCEPTED ANSWER & F5 ACCEPTED ANSWER

So I just wanted to know that shall i go with Vlan X and Vlan A (Vlan Y, Z will not be in use) and their associated IP subnets.

That makes sense to me - it is certainly the easiest and fastest migration option.

0
Comments on this Answer
Comment made 3 months ago by GANESH G 2

Thanks

0
placeholder+image
USER ACCEPTED ANSWER & F5 ACCEPTED ANSWER

Yes indeed, you only need to go with 2 vlans with Big-IP ASM:

  • The client side vlan, where the virtual server receives traffic from the client; and

  • The server side vlan where the backend server resides.

So you should be good to get rid of the other two vlans (vlans Y and Z).

Hope this helps.

0