Forum Discussion

Nimbostratus

Feb 23, 2011

AD DC's behind F5....

We have several applications that are antiquated and not AD aware. They authenticate against a specific DC rather than to AD as a whole. So, typical AD load balancing will not work and we prefer not...

config

design

kraigk_52257

Nimbostratus

May 14, 2011

I am trying to get something similar working. I have setup a VIP with cert listening on port 3269 which is the secure global catalog port. The pool attached to this VIP are global catalog AD servers listening on port 3268. Is there any reason this shouldn't work? I can connect LDAP clients fine from on my company network but am so far not successful off network. My firewall group has supposedly allowed external access to port 3269 and I can telnet to it and get response but I simply can't connect/bind from the outside. Any ideas would be appreciated.

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

AD DC's behind F5....

Recent Discussions

ports are showing open on online scanning tool

Upgrade F5 BIGIP

DNS HM Probe issue

Is XFF a must for ASM WAF DoS

Switch ssl profile based on weak cipher detection via IRULE

Related Content

F5 Backup

WAF sync across DC

AD DC's behind F5 + SNAT

F5 not seeing DC or server in the pool

F5 Big-IP VE on azure

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS