Using GTM with Cisco ASA units

Question

Hello:&nbsp;
I have two ISP links (each with their own address space) connected to my GTM/LTM cluster. Cisco ASA boxes don't play well with multiple ISP links so I'd like to put my ASA units behind the GTM/LTM cluster so that clients could connect from either ISP.&nbsp;
Common sense says that I should be able to define VIPs for each ISP and send the requests to my ASA pool, but I suspect (call me cynical) that it's not quite that simple.&nbsp;
I've asked ASK F5 a dozen times over the years for this particular solution but haven't been able to get a straight answer. Is there any solution document, web page, or scribings from an Albanian monk that a person with mid-range F5 and ASA skills could use to set this up? I've got numerous web servers working well in this configuration but could really use some help getting my ASAs behind my BigIP.&nbsp;
Thanks,&nbsp;
Jim&nbsp;

jim_betts_47293 · Answer

As luck would have it, it turns out to be easier said than done.&nbsp;
Define a Performance Layer 4 VIP and point it at the pool of ASAs. Set the protocol to All Protocols and it works like a champ.&nbsp;

Forum Discussion

Using GTM with Cisco ASA units

1 Reply

Recent Discussions

Advise on setting up IRULE

google autenticator broken barcode

Port Group on F5OS network setting

vulnerabilities (CVE-2020-36363), CVE-2016-0736,CVE-2019-6593-FOR VERSION BIGIP LTM-16.1.4

Unwinding the Benefits of Investing in White Label Crypto Wallet

Related Content

Units of AVR basic data?

Integrating SSL Orchestrator with Cisco WSA Virtual Edition

F5 BIG-IP in Cisco ACI Multi-Site and Multi-Pod - Design Considerations

F5 BIG-IP Access Policy Manager (APM) - Idp integration - Cisco vManage

F5 BIGIP + Cisco Tetration: Application Centric Visibility