Forum Discussion
Defining "loopback" address on F5
To summarize and state in a different way, just so my point is clear:
Physical IPs of HA pair = 10.x.x.1, 10.x.x.2
Floating IP of HA pair = 10.x.x.3
External VIP space = 84.x.x.x static routed to 10.x.x.3
I want to build the following and be able to communicate with the external MGMT IPs on port 22 and 4353:
External MGMT IP 1 = 84.x.x.1 static routed to 10.x.x.1
External MGMT IP 1 = 84.x.x.2 static routed to 10.x.x.2
How do I configure each of the LTMs to allow SSH/iquery to 84.x.x.1, 84.x.x.2 without defining a physical VLAN?
- nitass
Employee
have you tried to create another selfip e.g. 84.x.x.1, 84.x.x.2 on the same vlan? didn't it work? - Greg_Burch
Nimbostratus
The problem with that, though, is wouldn't the F5 then source monitoring checks from those self-IPs in addition to the 10.x.x.1 and 10.x.x.2 IPs? That would likely cause issues... - Eric_St__John
Employee
What about creating a VIP with the necessary IPs, and attach the following iRule:when CLIENT_ACCEPTED { node 10.1.1.1 }
- Techgeeeg
Nimbostratus
Hi Greg, - nitass
Employee
Eric, cool!
) list ltm virtual bar
[root@bigip:Active] config ssldump -Aed -nni 0.0 port 443 -k /config/httpd/conf/ssl.key/server.key
---------------------------------------------------------------
---------------------------------------------------------------
Recent Discussions
Related Content
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com