Forum Discussion

nikzin1985_3413

Nimbostratus

Nov 18, 2017

BigIP in multiple vlans: Possible security issue

Hello, i have a question because of a possible security issue. A BigIP with two interfaces is connected to an internal an external firewall. In the same internal and external VLANs are multiple appli...

Cumulonimbus

Nov 18, 2017

If a bigip is in different dmz networks, you should configure route domains for every vlan.

If you don't configure route domains, all dmz server will be routed on the same outgoing dmz (you can prevent this behavior with vlan filter on forwarding vs, but you have to think about this every times you create a vs)

Another security issue is a virtual server in dmz1 can forward to pool members in dmz2...

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

BigIP in multiple vlans: Possible security issue

AppWorld Berlin iRules Contest!

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

Recent Discussions

SSL Forward Proxy, iRules and Client Hello

monitor/healthcheck issue with envoy gateway

Recommendation for Adv. Lab

Changes to DO and AS3 GitHub - no longer monitored

How to Verify config before loading to F5

Related Content

Logging/Blocking possible prompt injection

Quarterly Security Notification October 2025

Positive Security vs. Negative Security: A Comparison Using F5's Security Portfolio

Using n8n To Orchestrate Multiple Agents

Deploying the F5 AI Security Certified OpenShift Operator: A Validated Playbook

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS