Forum Discussion

Craig_17766's avatar
Craig_17766
Icon for Nimbostratus rankNimbostratus
Jul 10, 2012

Single F5 with 2 network segments??

Apologies if this is not the correct place to post this question:

 

 

We may be replacing some old load balancers, but if we need 2 it’s not likely we’ll be going for F5’s due to budgets.

 

 

We have a firewall with a DMZ and inside segments. Traffic is load balanced coming in from the internet to webservers in the DMZ, traffic is also load balanced between the DMZ webservers and app servers in the inside network. Now the traffic for this is minimal as it’s only a test environment.

 

 

Can I do this with one F5 load balancer? In a way I want to split a 5F logically in two. Would I be able to use say 2 interface for our DMZ segment (internet facing and DMZ LAN facing) and another 2 for Inside segment (internet facing and Inside LAN segment?) am I making any sense?

 

 

Any comments greatly appreciated.

 

 

Thanks,

 

 

Craig.

 

 

 

basic
getting started
new to f5

3 Replies

Sort By
  • nitass's avatar
    nitass
    Icon for Employee rankEmployee
    Jul 10, 2012
    Would I be able to use say 2 interface for our DMZ segment (internet facing and DMZ LAN facing) and another 2 for Inside segment (internet facing and Inside LAN segment?) am I making any sense?yes, that is fine. there is auto last hop feature which will send return traffic to where it comes in correctly without routing.

     

     

    sol11796: Overview of the Auto Last Hop setting

     

    http://support.f5.com/kb/en-us/solutions/public/11000/700/sol11796
  • El_Jefe's avatar
    El_Jefe
    Icon for Nimbostratus rankNimbostratus
    Jul 10, 2012
    The other thing you can do is set up route domains for each segment, if you REALLY want them segregated, and the traffic not mixing at all. I have replaced 2 LTM pairs with 1 doing this before.