For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Rahul_Yadav's avatar
Rahul_Yadav
Icon for Cirrus rankCirrus
Feb 03, 2020

F5 Bridge Mode using VLAN group

Hi,   I want know, in F5 bridge Mode using VLAN group - why we need to define self IP address. And one more point here, why F5 self IP address is not coming while doing TRACEROUTE.
application delivery
BIG-IP
Simon_Blakely's avatar
Simon_Blakely
Icon for Employee rankEmployee
Feb 03, 2020

> I want know, in F5 bridge Mode using VLAN group - why we need to define self IP address.

 

Because you have two separate vlans, so each VLAN requires a self-IP.

You may want to look at Virtual Wire which directly links two interfaces at Layer-2

 

> And one more point here, why F5 self IP address is not coming while doing TRACEROUTE.

 

With a VLAN Group, arp requests/responses get passed directly between the grouped VLANs, so there is no actual routing via the self-IP. Because of this, TRACEROUTE will not see the self-IP.

 

In general, VLAN groups should be used with care, as they may not always provide the results you expect or desire.

 

 

Rahul_Yadav's avatar
Rahul_Yadav
Icon for Cirrus rankCirrus
Feb 04, 2020

Thanks Blakely,

For kind response,

 

>With a VLAN Group, arp requests/responses get passed directly between the grouped VLANs, so there is no actual routing via the self-IP. Because of this, TRACEROUTE will not see the self-IP.

 

Actually I am using VLAN group and assign self IP to VLAN grp.

Does self IP required here?