For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Jeff_42220's avatar
Jeff_42220
Icon for Nimbostratus rankNimbostratus
Feb 27, 2009

Getting return traffic from a server to the LTM without using SNAT?

Hello,     I wanted to see if anybody has an idea on how I can get past the following problem.     In an environment where back end servers connect to both an LTM and a firewall ...
config
design
The_Bhattman's avatar
The_Bhattman
Icon for Nimbostratus rankNimbostratus
Feb 28, 2009
Hi Jeff,

 

Since there is no exact detail of how the topology is setup I can only provide you avenues for you to investigate.

 

 

But I had a similar requirement from a customer and the way I made this work was

 

 

I created a VLAN on the switch where the nodes lived on. There default gateway was the switch. However, I placed Policy Based Routing where if anything on address on the backend servers needed to talk to clients through the fireway I would push it through LTM. Everthing else would go through the switch. This way any vlan to vlan traffic would use the power of the switch rather then go through the LTM. The LTM then had a route to the firewall with forwarding IP turned on.

 

 

Hope this helps

 

CB