Forum Discussion
tmsah
Nimbostratus
Nimbostratus2 internal server vlans
hi i am very new to f5 , we have ltm VE , with internal and external vlans , we have internal servers in rang 10.110.142.0/24 , now we added 2 servers in rang 10.110.152.0/24 , do i need to add on...
mornings ,
thanks for your replays ,
Amine_Kadimi , really appreciate the explanation for each case , we went with option A with new interface with new vlan
regards .
Amine_Kadimi
MVP
MVPDepending of your network architecture:
1. If your servers are meant to be reachable through a level-3 equipment (a firewall typically) then you don't need to create IPs on the servers subnet as they are not meant to be directly connected. You need instead to have a nework route to reach your servers.
2. If your servers are meant to be directly connected to F5 e.g. no routing involved, then you need to have L2 and L3 connectivity between F5 and your servers. This is a simple process :
- Optional and not required but this is my way to go when using VMs with a small number of VLANs: let the hypervisor manages VLANs: Assign your 4th VM interface to the corresponding net or port group, and in the next step use the corresping (1.3) interface inside F5
- New VLAN creation, create the VLAN inside F5 and assign 1.3 as untagged
- Create self IP on the new subnet
Alternatively, you can choose to leverage VLAN tagging and use same interface for both VLANs, this is possible too.
You can also choose to not use any of these methods and just create the self IP if your two subnets belong to the same VLAN, but this is quite a rare condition in production environment
AaronChamplinNimbostratus
NimbostratusThank you for explaining in brief.