Auto Last Hop Feature

Question

Does auto last hop feature works for the traffic coming to servers for which F5 is the gateway?

e.g. F5 is the gateway for the server x.x.x.x and server admin wants to access the server, so the response for the same session does it use auto last feature?

I know, forwarding VIP and static route is needed on F5 for the traffic initiated from the server. But this question is more of response to traffic initiated from the client accessing the server.

jrahm · Answer

It doesn't matter if the BIG-IP is the gateway for server traffic or not. If traffic from the server is returned through the BIG-IP via route, snat or nat, and auto-last-hop is enabled, the BIG-IP will send that traffic back where it came from, regardless of what the routing table says. This can be problematic in DMZs, so understanding the feature is important.

Forum Discussion

Auto Last Hop Feature

Recent Discussions

Creating Policy using Terraform

Alert Mail when virtual server down trubleshooting

How to disable RC4 Cipher on SSL

Big-IQ + LetsEncrypt wildcard

DEVICE-0202 Error while adding rSeries as a provider in CM

Related Content

Experience the power of F5 NGINX One with feature demos

Would Auto last hop feature work with multi vrf environment on F5

DevCentral's Featured Member for February - Edouard Zorrilla

DevCentral's Featured Member for March - Thomas Dahlmann

DevCentral's Featured Member for April - Mihai Cziraki

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS