ASM on vCMP

Question

Hi All, 
Good day!
I have a question on vCMP deployment with ASM and LTM. What is the best practice and hence the pros/cons of having ASM/LTM in the same vCMP?
We are doing end to end SSL and hence having separate ASM and LTM will mean that we will have to have to encrypt decrypt at 2 different vCMPs?
Any pointers/links appreciated. There was a thread earlier, but doesnt address the end to end SSL requirement. &nbsp;
Looking forward for your help!
Cheers, 
Vidhya&nbsp;

techntactical_1 · Answer

All dependent on how much resources you have available to you? This is more of an architecture question. What platform are you running? ASM deployed standalone gives you a maximum of one pool member. ASM deployed in line with LTM will give you a scenario like below:&nbsp;
1.) Client Connects to a Virtual Server lets say TEST_VS On LTM 
2.) TEST_VS pool member is ASM (Probably a VS on ASM)
3.) ASM VS has pool members that are the back-end servers.&nbsp;
You might have ASM + LTM in a VCMP instance which would give you something like:&nbsp;
Load Balancing
Multiple Pool Members
DSC (HA) and Sync&nbsp;
The number of times you have to encrypt and decrypt will decrease if you have ASM/LTM in the same VCMP instance. What do you see currently from a SSL TPS?&nbsp;

Forum Discussion

ASM on vCMP

1 Reply

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

2026 301a exam

UCS Encryption Question

Unblock Request WAF

VIP is not responding on SYN after enabling other modules like ASM, APM and AFM.

VIP in https that redirect to another vip in https

Related Content

vCMP logical interfaces throughput

Lightboard Lesson: What is vCMP?

F5 asm/awaf

BIG-IP Upgrade Procedure Using CLI (vCMP Guest & Host)

File Uploads and ASM

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS