3400 GTM/LTM GTM on private ip add-in dmz now

Hi there!

 

Need some help please.

 

We are running GTM/LTM on 3400s in 2 datacenters. Both GTM/LTM is on 1 box each.

 

GTM with Public ip address range works like a charm.

 

 

Now want to use GTM function in private ip addressing, meaning GTM will be behind the firewall in DMZ, hosting DMZ servers from Internet.

 

 

However GTM has prviate ip add e-g 10.1.1.1 and has a static mapping on firewall 202.202.202.202 to a public ip.

 

 

1- There is a tranaslation option on GTM GlobalTraffic >>> Servers. Mapped 10.1.1.1 to 202.202.202.202 - How does this help.

 

2- Should i define Vs in real ip addresses or private ip addresses? All Vs are in 1 subnet 10.1.1.x/24 - If i define vs in private ip addresses GTM starts handing out private ip add to udp query. If i define public it hands out public ip add.

 

 

3- defining Vs in private ip add say 10.1.1.3 will conflict with actual server in dmz as the same server exists with ip add 10.1.1.3. Can this be loadbalanced without conflicts?

 

 

There is a tranalation feature in Vs as well. Was wandering if in LTM can define servers in private ip add say 10.1.1.2 and add in GTM 10.1.1.2 translate to 202.202.202.203 in GlobalTraffic>Servers>Vs

 

3- Also if i add vs in GTM translation services are limited to http/s, ftp/telnet/smtp/snmp/ssh only - how can i allow all services?