Configuring iQuery for GTM / DNS

Question

Hi,We're starting to look at implementing GSLB for various of our external services.All of the documentation says we should add our BIG-IP devices in our other data centers via DNS &gt; GSLB &gt; Servers and add using its external IP address.We do not connect our F5's directly to the internet, instead the NAT is handled by our Firewalls. What IP should I use or how should i configure the server?&nbsp;With just their internal management IPs? (Both datacenters are linked via Layer 2 direct fibre so we can contact without having to go out externally)With the IPs they have in our pool subnet?Or do i add and put the external address that the GTM DNS listener will be on and have a translation to the internal GTM DNS listener address?&nbsp;&nbsp;Any pointers are appreciated.&nbsp;Thanks

anoop_jayadharan · Answer

Hey Arron_F​&nbsp;In your case, add BIG-IP LTMs into the DNS using their internal Self-IPs, assuming they are reachable through the MPLS/dark fibre&nbsp;internally. IQuery would happen through this private link. However, when you define virtual servers within the server objects, the following procedure is recommended.&nbsp;You can add either a virtual server or a pool-level monitor to achieve more precise control.&nbsp;#####################################################################Creating BIG-IP LTM virtual server objects for BIG-IP servers that reside behind a firewall, NATThe IP address that you define as the virtual server address for a BIG-IP LTM virtual server is the internet-facing firewall NAT address that clients use to access the virtual server services. The translation address of a virtual server is the private network address defined for the virtual server on the BIG-IP LTM system.For example, consider a case in which the BIG-IP LTM system's virtual server private network address is 10.0.0.111, and the firewall Internet-facing NAT address is 65.61.115.223.When you add the BIG-IP LTM system's virtual server to the BIG-IP DNS system, you enter the IP addresses in the&nbsp;General Properties&nbsp;section, as follows:Address 65.61.115.223Translation 10.0.0.111&nbsp;

Forum Discussion

Configuring iQuery for GTM / DNS

1 Reply

Tyler - May 2026 Featured Member

AppWorld Berlin 2026 – iRules Contest Winning Results

One Quick Step to Make your website AI-Agent/MCP Ready with an iRule

Recent Discussions

Need BIG-IP VE Lab License for Personal Study/Learning

Creating a GTM Pool error

LTM+GTM at same box

Configuring iQuery for GTM / DNS

AWAF Detection Inconsistency Between Similar Test Payloads

Related Content

Managing iRules configuration

Lightboard Lessons: F5 BIG-IP DNS (GTM) iQuery Protocol Overview

GTM and LTM iquery issues

iQuery Connectivity timeout

DNS/iQuery Question - Design Consideration

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS