BIG-IP Design Issues

Question

Hi,&nbsp;
&nbsp;I am pretty new in F5 world and I have 2 design related questions:
&nbsp;1. Is it possible to create 3 VLANs (with Web servers farms) on 3 different DMZs connected to a Firewall (ex: Cisco ASA) and have the LTM in a different DMZ connected to the same firewall through a 802.1Q VLAN tagged trunk?
&nbsp;2. I want to have 2 datacenters in Active-Active mode; can the Advanced Routing Module check the availability of my servers on one particular site and if they are down, send a routing advertisement to my router (ex: OSPF) to change the route to those particular servers to the second datacenter?&nbsp;
&nbsp;Thanks very much for your help.&nbsp;
&nbsp;Fouad&nbsp;&nbsp;

deb_allen_18 · Answer

Hi Fouad -
1) Should be, if I understand the question correctly.  If the network looks like this:
          LTM
           |
          DMZ0
           |
        Firewall
        /   |   \
    DMZ1   DMZ2  DMZ3
     |      |      |
servers  servers  servers
then you can use static routing on the LTM to route  traffic bound for each DMZ subnet via the firewall interface.
2) Yes
You're very welcome.
/deb

Forum Discussion

BIG-IP Design Issues

Recent Discussions

AS3 Limitations

Diameter iRules attachment?

Help needed with iRule (connection closed log )

Use of SSL Decryption.

VLAN Failsafe Functionality

Related Content

F5 BIG-IP in Cisco ACI Multi-Site and Multi-Pod - Design Options

BIG-IP DNS Resource Record Types: Architecture, Design and Configuration

F5 BIG-IP in Cisco ACI Multi-Site and Multi-Pod - Design Considerations

Help F5 Transform the BIG-IP Administrator Certification

BIG-IP Telemetry Streaming to Azure

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS