Forum Discussion

Nimbostratus

Aug 06, 2015

Help with configuring F5 load-balancing in between two ASA pairs (full routing)

Hello, I'm fairly new to F5s, and from what I've been seeing in my searches it appears as though I've really dived into the deep end for complex F5 setups. I've been spending time researching my is...

application delivery

availability

BIG-IP Access Policy Manager (APM)

Admin

Aug 06, 2015

since everything appears to be L3 segmented with routes pointing in the "right" direction, I don't think snat is necessary.
If you are routing anything inbound, yes. If you are just serving traffic via specific application virtual servers, no. The outbound virtual will manage return traffic.
Complex because of DMZ, but fairly simple wrt the BIG-IP itself. Note that in DMZs, I always make a habit of disabling auto-lasthop so I am 100% sure I have explicitly allowed traffic to flow instead of BIG-IP getting traffic back to where it came from with or without the routes necessary to do it.

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Help with configuring F5 load-balancing in between two ASA pairs (full routing)

Recent Discussions

self-directed requests fail because of no certificate

Decode ObjectSID from Base64-encode string

iRule - Url rewrite and header replace and pool selection not working

ip x-forwarding

F5 ASM API-Protection Policy

Related Content

Active/Active load balancing examples with F5 BIG-IP and Azure load balancer

Load Balancing TCP TLS Encrypted Syslog Messages

Transparent load balancing in Azure, Part 2

NGINXaaS for Azure: Load Balancing

Load Balancing versus Application Routing

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS