Forum Discussion
Danny_Arroyo
Cirrus
CirrusAdding vlan and selfip to F5 LTM in HA
We have 2 F5 LTM i2600 series physical devices running v13.1.3.2. We have an internal and external vlan. We now need to add an additional vlan for our internal Web servers. Lets call it WebVLAN
My question has to do with the fact that we currently have a route added to the F5 for the subnet where these Web Servers live. I would like to know the proper way to switch this subnet from a static route to a VLAN with a corresponding self ip, without any downtime.
From my understanding the steps are:
- Create a Vlan.
- Tag it to the proper Interface
- Specify the action as "failover"
- Create a unique SelfIP on each node and a Floating HA ip
- Save. Will there be an issue at this point??
- Remove the existing static route for this specific Vlan
I am not sure however of the order or If I have missed anything.
Any advice is appreciated.
Danny_ArroyoPete,
Thanks for your help. It worked as you said.
PeteWhiteEmployee
yes - a self-ip in traffic-group-local-only for each peer, plus one in traffic-group-1 which is floating. The floating self-ip will be the gateway for the servers.
- Danny_Arroyo
Pete,
Thanks for the response. Thats good to hear.
Additionally, for the self ips. This is an HA pair, so I have to create a self ip on each node, then add the HA for the self-ip on each node, correct. Or do I create the HA selfip config on the active node and it gets synced to the standby node?
- PeteWhite
You don't actually need to worry about that - if you add the self-IP then that route will take precedence.
So the actions are:
- Create VLAN
- Create self-IP on VLAN
- Remove static route