Routing traffic to remote sites using LTM

We have version 2 of an in-house application coming up. It has been decided that our F5 LTMs will be the front end to manage traffic.

 

 

There will be regional application servers, IIS. End users login to those. The question is the best way to tell a user at Site X to login to Site X's regional server.

 

 

The proposed method is for each client to use domain suffix search order to find the closest resource. Thus a client.juarez.company.com would find shop-floor.juarez.company.com. Neat and tidy.

 

 

I wondered if using an iRule would be a better solution. We know all users will be internal, we know our subnets [1] so if we assume ...

 

 

F5 LTM ver 9.4.6

 

Cluster

 

Located in the same subnet as global.company.com, at global headqarters.

 

 

subnets

 

 

Penang = 10.0.1

 

Xiamen = 10.0.2

 

Jaurez = 10.0.3

 

GHQ = 10.0.4

 

 

Pools

 

GSF_PD_PENANG

 

member: shop-floor.penang.company.com

 

 

GSF_PD_XIAMEN

 

member: shop-floor.xiamen.company.com

 

 

GSF_PD_JUAREZ

 

member: shop-floor.juarez.company.com

 

 

GSF_PD_GLOBAL

 

member: global.company.com

 

 

 

With an IRULE

 

 

pseudo-TCL

 

 

when CLIENT_ACCEPTED {

 

if {[IP::addr "[IP::client_addr]/24" equals "10.0.1/24"]} {

 

pool GSF_PD_PENANG

 

}

 

else if {[IP::addr "[IP::client_addr]/24" equals "10.0.2/24"]} {

 

pool GSF_PD_XIAMEN

 

}

 

elseif {[IP::addr "[IP::client_addr]/24" equals "10.0.3/24"]} {

 

pool GSF_PD_JUAREZ

 

}

 

else

 

{pool GSF_PD_GLOBAL}

 

}

 

 

 

1. Would this be viable?

 

 

2. The first question raised was 'would this mean traffic is routed from the the site, to the F5 LTM, then back to the site where the shop-floor.location.company.com server is?' Would it?

 

 

 

 

[1] Yes, I know these are not valid subnets. Example use only.