Forum Discussion

Nimbostratus

Sep 28, 2013

Access Policy on BIGIP 2000S LTM

Hi We have recently purchased 2 BIGIP 2000S LTM boxes, we are intend to load balance our web servers (2 of them) with this. We have updated the software to 11.2.1 and configured both the LTMs i...

design

Kevin_Stewart

Employee

Sep 30, 2013

Getting a somewhat clearer picture.

OUTBOUND: If you want to be able to talk to the outside world through the LTM, the LTM must be able to forward/route the traffic outbound. This requires a forwarding VIP and default outbound route on the LTM, and for the servers to send requests in the LTM's direction.

INBOUND: If you want to be able to route traffic through the LTM from the outside (or another network/VLAN) to servers on the inside, you either need a NAT (1-1 IP mapping) or a virtual server (wildcard or specific).

The LTM is a default deny device, so you have to specific about what services you want to be able to pass, and from which direction.

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)