Hi everyone I would like to know if anyone has used a setup that has one large subnet as an outside Vlan (for service VIP's) and it routes to all the different server vlans. Typically, we setup all the server vlans with Self Ip and Floating IP and then use the automap feature to move the traffic. In this traditional model, we need to always reserve self IP and float IP in the vlans where the servers are built and to allow firewall rules for these IP and the subsequent "Outside" IP. Is there a design where we can just have the traffic route to the servers? When I do not have a self IP for the vlan, it seems to just send the traffic via the default route. Thanks Chung

I have this type of setup where there is no self-ip on the LTM and it works perfectly fine. Reason - All the IP addresses (VIP, Pool members) are advertised in the same routed protocol. I have not come through any issue with this design. It's configured in one arm mode and also uses snat pool.But on F5, you will have to set a default route for reverse traffic.

I am not sure if it exist but will let the others comment.

I have this type of setup where there is no self-ip on the LTM and it works perfectly fine. Reason - All the IP addresses (VIP, Pool members) are advertised in the same routed protocol. I have not come through any issue with this design. It's configured in one arm mode and also uses snat pool.But on F5, you will have to set a default route for reverse traffic.

Hi Thanks for the response, are your servers pointing to the router as the default gateway and when the servers respond, is the traffic returning tot he the snat pool address? Regards chung

Load Balancer Traffic Design without using Self IP

15 Replies

Root44_196087
Nimbostratus
Feb 05, 2019
I am not sure if it exist but will let the others comment.
Amresh008
Nimbostratus
Feb 05, 2019
I have this type of setup where there is no self-ip on the LTM and it works perfectly fine. Reason - All the IP addresses (VIP, Pool members) are advertised in the same routed protocol. I have not come through any issue with this design. It's configured in one arm mode and also uses snat pool.But on F5, you will have to set a default route for reverse traffic.
- chungyu_16122
  Altostratus
  Feb 06, 2019
  Hi
  
  Thanks for the response, are your servers pointing to the router as the default gateway and when the servers respond, is the traffic returning tot he the snat pool address?
  
  Regards
  
  chung
- Amresh008
  Nimbostratus
  Feb 06, 2019
  The servers are all part of the L3 vlan and they have the corresponding default gateway. The snat pool comes in picture for the incoming traffic and not the outgoing traffic.
- chungyu_16122
  Altostratus
  Feb 06, 2019
  Thanks alot, I will give it a try.
  
  Chung
Amresh008
Nimbostratus
Feb 05, 2019
I have this type of setup where there is no self-ip on the LTM and it works perfectly fine. Reason - All the IP addresses (VIP, Pool members) are advertised in the same routed protocol. I have not come through any issue with this design. It's configured in one arm mode and also uses snat pool.But on F5, you will have to set a default route for reverse traffic.
- chungyu_16122
  Altostratus
  Feb 06, 2019
  Hi
  
  Thanks for the response, are your servers pointing to the router as the default gateway and when the servers respond, is the traffic returning tot he the snat pool address?
  
  Regards
  
  chung
- Amresh008
  Nimbostratus
  Feb 06, 2019
  The servers are all part of the L3 vlan and they have the corresponding default gateway. The snat pool comes in picture for the incoming traffic and not the outgoing traffic.
- chungyu_16122
  Altostratus
  Feb 06, 2019
  Thanks alot, I will give it a try.
  
  Chung
Amy003_314955
Cirrus
Feb 05, 2019
I have this type of setup where there is no self-ip on the LTM and it works perfectly fine. Reason - All the IP addresses (VIP, Pool members) are advertised in the same routed protocol. I have not come through any issue with this design. It's configured in one arm mode and also uses snat pool.But on F5, you will have to set a default route for reverse traffic.
- chungyu_16122
  Altostratus
  Feb 06, 2019
  Hi
  
  Thanks for the response, are your servers pointing to the router as the default gateway and when the servers respond, is the traffic returning tot he the snat pool address?
  
  Regards
  
  chung
- Amy003_314955
  Cirrus
  Feb 06, 2019
  The servers are all part of the L3 vlan and they have the corresponding default gateway. The snat pool comes in picture for the incoming traffic and not the outgoing traffic.
- chungyu_16122
  Altostratus
  Feb 06, 2019
  Thanks alot, I will give it a try.
  
  Chung
Erik
Nimbostratus
Feb 07, 2019
Hi, I have a setup that uses this. Have a front-end VS with a public IP and with selection in iRules it send the traffic to a back-end VS. This back-end-VS is APM enabled and are configured with private IPs that does not have any Self-IPs. The back-end VS then communicate with pools. Works perfectly.

Regards Erik
SWJO
Cirrostratus
Feb 07, 2019
Hi

The best solution for your question is DSR(direct server return).

exactly L3 N Path Routing.

But there is limit on this topology.

Regards,

Forum Discussion

Load Balancer Traffic Design without using Self IP

15 Replies

Recent Discussions

BIG-IP DNS: Check Status Of Multiple Monitors Against Pool Member

Open Redirection Mitigation

F5Access | MacOS Sonoma

enable tls1.2 on management interface on F5 ltm running version 10.x

[ASM] - what is "Browser Challenge file" ?

Related Content

Using F5 for load balancing internal traffic

Active/Active load balancing examples with F5 BIG-IP and Azure load balancer

fellow traffic

What is Load Balancing?

Re: NGINX for Azure: Load Balancing