Learn F5 Technologies, Get Answers & Share Community Solutions Join DevCentral

Filter by:
  • Solution
  • Technology
Answers

SSL VPN lease pool to use DHCP

Hi,

We are planning to deploy SSL VPN using F5s, and the question that I would like to ask is Can the F5 uses DHCP scopes instead of a predefined leased IP Addresses Pool?

If the answer is No, and I define a pool with the same IP Addresses for the SSL VPN that for internal users: 10.10.10.0/24 Is there a chance the SSL VPN to uses the same IP Address as one given by DHCP to the internal user?

Thanks

0
Rate this Question

Answers to this Question

placeholder+image
USER ACCEPTED ANSWER & F5 ACCEPTED ANSWER

Hi,

For the momement it's not possible to use DHCP, you have to use lease pool.

If you want to assign a specific IP by user, you can do it but you have to do it manually trough the VPE or Irule with DG if you want to simplify your deployment.

Let me now if you need help...

Regards

0
Comments on this Answer
Comment made 22-May-2018 by a.basharat 292

I found this template with iApp & Irule: https://devcentral.f5.com/wiki/APM.Get-IP-Addresses-from-DHCP-for-APM-VPN-clients-Network-Access-Tunnels.ashx

Is it legitimate to say that it would do the job [get DHCP IP Addresses instead of lease pool]?

0
Comment made 22-May-2018 by youssef 3588

Just one thing before go ahead, If you provide the same IP For user in lease pool you may have routing problems.

return packets from vpn users will not arrive at F5 but will be redirected to the user vlan ...

For F5 Lease Pool you have to set a new VLAN/Network an route this network to F5 (self for standalone or floating for Cluster)...

finally to answer your question I have never implemented this kind of implementation.I checked IAPP documentation and it seems to me that it works and therefore it meets your needs.

let me now if i can help you.

Regards

0
placeholder+image
USER ACCEPTED ANSWER & F5 ACCEPTED ANSWER