We are planning to deploy SSL VPN using F5s, and the question that I would like to ask is Can the F5 uses DHCP scopes instead of a predefined leased IP Addresses Pool?
If the answer is No, and I define a pool with the same IP Addresses for the SSL VPN that for internal users: 10.10.10.0/24 Is there a chance the SSL VPN to uses the same IP Address as one given by DHCP to the internal user?
For the momement it's not possible to use DHCP, you have to use lease pool.
If you want to assign a specific IP by user, you can do it but you have to do it manually trough the VPE or Irule with DG if you want to simplify your deployment.
Let me now if you need help...
I found this template with iApp & Irule: https://devcentral.f5.com/wiki/APM.Get-IP-Addresses-from-DHCP-for-APM-VPN-clients-Network-Access-Tunnels.ashx
Is it legitimate to say that it would do the job [get DHCP IP Addresses instead of lease pool]?
Just one thing before go ahead, If you provide the same IP For user in lease pool you may have routing problems.
return packets from vpn users will not arrive at F5 but will be redirected to the user vlan ...
For F5 Lease Pool you have to set a new VLAN/Network an route this network to F5 (self for standalone or floating for Cluster)...
finally to answer your question I have never implemented this kind of implementation.I checked IAPP documentation and it seems to me that it works and therefore it meets your needs.
let me now if i can help you.
iApp, documentation, and example APM Policy to get IP addresses from DHCP for APM VPN clients