Mar 27, 2026 - For details about updated CVE-2025-53521 (BIG-IP APM vulnerability), refer to K000156741.

Forum Discussion

ReWrite_132188's avatar
ReWrite_132188
Icon for Nimbostratus rankNimbostratus
Jul 02, 2014

F5 BIG-IP answers with a self-ip that is not associated with that VLAN

Hi, I am working on implementing av proxy-solution with the help of F5 BIG-IP to do SSL-decrypt. In short: Users surf the web, and the traffic hits the F5 internal VLAN over a fiber-trunk(2.1 and...
application delivery
deployment
design
LTM
vlan
BinaryCanary_19's avatar
BinaryCanary_19
Historic F5 Account
Jul 06, 2014

YOur problem description is a bit unclear, but I'd like to point out a few things.

 

The BIGIP is unlikely to be responding to Requests from your proxies. Your Proxies should be sending Connections to a specific IP address on the BigIP (a Virtual Address most likely), and so the response to the proxy will be the IP of the virtual. If you see some traffic from the Bigip to the Proxy and it is using a floating IP address, then it is likely to be traffic originating from a client, and also handled by a Virtual server. If you see traffic with a self-IP, then it is most likely to be monitor traffic (and you should probably ignore it).

 

You will need to describe better what objects are involved, and how the traffic flows.

 

Example:

 

Ingres ->vlan internal -> Virtual vsinbound ->Egres: vlan proxy; -> Pool: proxy-pool

 

Then paste the config of the virtual.

 

Do this for all the relevant flows, and it should present a better picture what's going on...