Concerns over F5 Load balancer's co-existence with IronPort ESAs

Question

Planning to put a F5 load balancer in front of IronPort ESAs to spread the SMTP traffic from internet. We have couple of concerns. &nbsp;

Can the SSL acceleration feature in the F5 be turned off? Apparently, the TLS communication between internet source and IronPort server will be interrupted due to this feature.&nbsp;

Is F5 load balancer "session aware"? I mean, does it forcefully disable/disconnect a session between source and destination (IronPort) for any reason?&nbsp;

mimlo_61970 · Answer

Yes, just don't apply an ssl profile to the virtual server(client or server)&nbsp;

Without ssl termination, which as stated above you want to disable, the f5 won't be aware of anything except the layer 4 tcp conncetions. It would not be able to make any determinations or take any actions based on message content. The only reason I can think of that it would disconnect/disable would be due to standard tcp/ip failures, or if a pool member fails(influenced by your 'action on service down' setting)

F5 is upgrading its customer support chat feature on My.F5.com. Chat support will be unavailable from 6am-10am PST on 1/20/26. Refer to K000159584 for details.

Forum Discussion

Concerns over F5 Load balancer's co-existence with IronPort ESAs

1 Reply

F5 Container Ingress Services (CIS) and using k8s traffic policies to send traffic directly to pods

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

can't access on prem dns when using F5LTM as a gateway

Issue with TLS Version 1.1 Deprecated Protocol

Service discovery is not happening in AS3

Load balanced RDP VIP use in APM

Deleting an AS3 Tenant

Related Content

Transparent Load Balancing in Azure

Four Active/Active load balancing examples with F5 BIG-IP and Azure Load Balancer

What is Load Balancing?

Load Balancing WebSockets

Load Balancing TCP TLS Encrypted Syslog Messages

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS