Greg_Burch
Jul 19, 2012Nimbostratus
Defining "loopback" address on F5
I have an LTM pair that is only physically connected to an internal VLAN. Externally-accessible virtual servers have their own IP space that is static-routed to the non-internet-routable physical address of the F5. My problem, though, is I have a need to communicate with this LTM pair over the internet from a remote GTM device (via port 22 and 4353). I'm unable to figure out a way to essentially define a "loopback" address that I can static route to each of the devices in the HA pair (without making the LTM source monitoring checks from that address). Has anyone encountered this use case before and figured out a way to make it work?
To summarize and state in a different way, just so my point is clear:
Physical IPs of HA pair = 10.x.x.1, 10.x.x.2
Floating IP of HA pair = 10.x.x.3
External VIP space = 84.x.x.x static routed to 10.x.x.3
I want to build the following and be able to communicate with the external MGMT IPs on port 22 and 4353:
External MGMT IP 1 = 84.x.x.1 static routed to 10.x.x.1
External MGMT IP 1 = 84.x.x.2 static routed to 10.x.x.2
How do I configure each of the LTMs to allow SSH/iquery to 84.x.x.1, 84.x.x.2 without defining a physical VLAN?