Concerns over F5 Load balancer's co-existence with IronPort ESAs

Question

Planning to put a F5 load balancer in front of IronPort ESAs to spread the SMTP traffic from internet. We have couple of concerns. &nbsp;

Can the SSL acceleration feature in the F5 be turned off? Apparently, the TLS communication between internet source and IronPort server will be interrupted due to this feature.&nbsp;

Is F5 load balancer "session aware"? I mean, does it forcefully disable/disconnect a session between source and destination (IronPort) for any reason?&nbsp;

mimlo_61970 · Answer

Yes, just don't apply an ssl profile to the virtual server(client or server)&nbsp;

Without ssl termination, which as stated above you want to disable, the f5 won't be aware of anything except the layer 4 tcp conncetions. It would not be able to make any determinations or take any actions based on message content. The only reason I can think of that it would disconnect/disable would be due to standard tcp/ip failures, or if a pool member fails(influenced by your 'action on service down' setting)

Forum Discussion

Concerns over F5 Load balancer's co-existence with IronPort ESAs

1 Reply

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

Illegal Metacharacter in Parameter Name in Json Data

Cisco TACACS+ Config on ISE LTM Pair

AS3 declaration to set cookie to preferred

SSL Bridging and FQDN rewrite Policy

Checking for X-Forwarded-For against an Address Data-Group

Related Content

Four Active/Active load balancing examples with F5 BIG-IP and Azure Load Balancer

What is Load Balancing?

Load Balancing WebSockets

Load Balancing TCP TLS Encrypted Syslog Messages

Transparent Load Balancing in Azure

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS