Issue with direct connections to server behind F5

Question

Hello all,&nbsp;
We are having some weird issues with some of our servers and maybe someone else had the same issue. The way we have setup is following:&nbsp;
Firewall ----- DMZ external vlan --- F5 --- DMZ internal vlan ---- Server&nbsp;
So the server is having a default gateway pointing to F5 and F5 has wildcard virtual server for any request coming in on internal vlan to point to IP on the Firewall. The one strange thing is that the Firewall has also interface in the DMZ internal vlan with IP so when requests coming in directly to server they are bypassing the F5 but going back they are going through F5. So there is assymetric routing when connecting directly to server - the wildcard virtual server has the TCP profile to enable assymetric flow. &nbsp;
So the issue is. We are having the F5 as a Virtual Edition on one of our ESXi hosts. When the server (node) is on the same host (same ESXi) - direct connections to server are really slow, pages are loading for 5 minutes+. However when we connect to virtual server which has a pool with this server on it, the speed is much better, the page loads within 10-15 seconds. This all goes away when we move the server to a different host in the network. &nbsp;
Does anyone have any ideas why this could happen ? &nbsp;
Thanks&nbsp;

vijay_e · Answer

See K10436&nbsp;

Forum Discussion

Issue with direct connections to server behind F5

1 Reply

Recent Discussions

SMS server with BIGIP

F5 terminal - help to run commands - disk space full

Can iRule be used to perform exception of IPI category based on Geolocation

[ASM] - what is "Browser Challange file" ?

LDAPS and renegotiation

Related Content

Script to find virtual servers with connection mirroring enabled

iRule node directive not working with SSL terminated virtual server

How can I configure Server SSL Profiles to connect to different URLs on the same server?

Current connections vs CLI show sys connections

Find connection attempts via source IP