Ed_27995
Jul 02, 2008Nimbostratus
Need load balanced servers to be externally accessible
Hi DevCentral,
I have load balanced application servers set up in the following fashion:
PIX
|
LTM
|
------------------------
| | |
NodeA NodeB NodeC
The app servers have their default gateway addresses set to the IP address of the virtual server on the BigIP. Load balancing is currently working, but due to a change in the way a component of the application works, the servers need to be externally accessible via their fully-qualified domain names.
The current virtual server config includes an automap SNAT pool that was implented to force single-signon requests from a portal server in the same subnet to be routed back through the traffic manager. User sessions are tracked via cookie persistence.
The users will interact with the app via appname.domain.edu, but the changed application component will be referencing servername.domain.edu to load. Based on this, it looks like I will need to completely change the load balancing setup- I will need the servers to have our router address as the default gateway again so they can be accessed from outside the network, and that will require a SNAT to get responses from the server to route back through the traffic manager.
Do I have a correct understanding of how F5/BigIP SNAT works? Is the automap SNAT enough to keep sessions routing through the traffic managers for session persistence, or will I need to configure SNAT beyond the automap?