Forum Discussion
NimbostratusCan't access LTM VS when connected to SSLVPN on same BigIP
Hi all,
I'm hoping that this is an easy fix but I can't quite get my head around it....
I have a single BigIP that has 2 different subnets for Client facing and Internal (SNAT) traffic.
Subnet1 is used to host LTM virtual servers for multiple services and also provides the VS that hosts our SSLVPN.
Subnet2 is in a different IP range that we generally use for SNAT Addresses for services that require this.
So, we have a generic web VS running on Subnet1, let's call that VS1. And a second VS that is the client connection point/Webtop for our SSLVPN, VS2. These are both on the same subnet, 1.
The SSLVPN is configured to use SNAT and has a SNAT IP address in Subnet2.
Clients can connect to both VS without issue, however when the client connects to the SSLVPN it can connect VS2 that hosts the SSLVPN/Webtop etc.. However it can no longer connect to VS1 that hosts the generic web service. If I disconnect from the SSLVPN the connection to VS1 is restored.
I'm sure this must be a routing issue or something simple that I'm missing but any help would be appreciated.
Thanks in advance
Spence
Stanislas_Piro2Cumulonimbus
Hi,
I guess the web virtual server is configured to listen only on the subnet1 VLAN.
If it’s configured like that, You must also allow ssl vpn connectivity profile on web VS