Creating Layer 2 bridges??

Question

Hi All:&nbsp;&nbsp;Is it possible to create a Layer 2 bridges with the big-ip VE to have it act as a network bridge??  &nbsp;&nbsp;&nbsp;Similarly, exactly what the linux "brctl" command does.  I am wondering if this is possible.  Thank you.&nbsp;

qe_102628 · Answer

The short answer:  No. 
&nbsp;  
&nbsp;  
&nbsp; (my apologies for diverging into VMware specific terminology for those of you deploying BIG-IP VE on Hyper-V or Xen): 
&nbsp; The long answer:    
&nbsp;  
&nbsp; VLAN Groups are a supported method of bridging a layer 3 topology over at least two layer 2 topologies, or VLANs.  Deploying a VLAN Group configuration usually requires adjusting the configuration of the hypervisors vSwitch to accept multiple MAC addresses from a single virtual port.   This is often not desirable for all hosts on a VLAN, and in fact overlapping portgroups can be combined on the same vSwitch, where one has forged MAC addressing enabled and the other is left to the stock unimac port settings. 
&nbsp;  
&nbsp; That being said, usually, the hypervisor's switch infrastructure can be utilized for bridging.   This generally involves configuring multiple physical interfaces into a single vSwitch, and then a single virtual NIC of the BIG-IP VE is connected to this vSwitch.   
&nbsp;  &nbsp;

Forum Discussion

Creating Layer 2 bridges??

1 Reply

Recent Discussions

Handling IP Geolocation Conflicts with AWAF for Internal LAN Addresses

F5 AWAF with HTTP/2, MRF and Websocket profiles

What parameter sections can be checked to find out the cause of slow GUI access?

Issue with worker_connections limits in Nginx+

Nginx Reverse Proxy issue for port other than 81

Related Content

SSL Bridging verification

Integrating SSL Orchestrator with CheckPoint Firewall VM-Bridge Mode (L2)

Create a DevCentral account

Layer 7 Content Routing in F5 XC

Layer 4 vs Layer 7 DoS Attack