Forum Discussion
Greg_Burch
Nimbostratus
NimbostratusDefining "loopback" address on F5
I have an LTM pair that is only physically connected to an internal VLAN. Externally-accessible virtual servers have their own IP space that is static-routed to the non-internet-routable physical addr...
nitass
Employee
EmployeeEric, cool!
Greg, can you try what Eric suggested?
this is my testing.
) list net self 10.201.59.133
net self 10.201.59.133 {
address 10.201.59.133/27
allow-service all
traffic-group traffic-group-local-only
vlan internal
}
) list net self|grep 84.1.1
)
) list ltm virtual bar
ltm virtual bar {
destination 84.1.1.1:443
ip-protocol tcp
mask 255.255.255.255
profiles {
tcp { }
}
rules {
myrule
}
vlans-disabled
}
) list ltm rule myrule
ltm rule myrule {
when CLIENT_ACCEPTED {
node 10.201.59.133 443
}
}
[root@bigip:Active] config ssldump -Aed -nni 0.0 port 443 -k /config/httpd/conf/ssl.key/server.key
New TCP connection 1: 10.253.114.7(41499) <-> 84.1.1.1(443)
1 10 1342776301.2545 (0.0271) C>SV3.1(167) application_data
---------------------------------------------------------------
HEAD / HTTP/1.1
User-Agent: curl/7.15.5 (i686-redhat-linux-gnu) libcurl/7.15.5 OpenSSL/0.9.8b zlib/1.2.3 libidn/0.6.5
Host: 84.1.1.1
Accept: */*
---------------------------------------------------------------
1 11 1342776301.2555 (0.0010) S>CV3.1(280) application_data
---------------------------------------------------------------
HTTP/1.1 200 OK
Date: Fri, 20 Jul 2012 09:25:01 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Mon, 21 Nov 2011 02:51:30 GMT
ETag: "172a9-ced-c3831080"
Accept-Ranges: bytes
Content-Length: 3309
Content-Type: text/html; charset=ISO-8859-1
---------------------------------------------------------------