Forum Discussion
jenmick1_43986
Nimbostratus
NimbostratusInter-VLAN Routing?
Hello all!
I am working with an HA pair of LTM 1600s in a remote DC and a new issue with the configuration has come up. We have a couple of things going on and I am unsure of how to resolve the issue.
Basic configuration
VLAN1 of 192.168.1.0/24 lies between the LTM and its upstream firewall and routes VLAN2 to the LTM.
VLAN 2 (172.16.5.0/24) is routed from the FW to the LTM (so the default gw is the load balancer)
VLAN 3 (172.16.39.0/24) is directly connected to the firewall.
Server A at 172.16.5.241 needs to talk to a VIP at 172.16.39.138:443. Currently, a tcpdump on the LTM itself shows the self-ip of the LTM at 172.16.39.10 arp-ing for the VIP. Any traffic coming from external VLANs can go through to the VIP without issues, so I don't want to break that.
I know that I could create a forwarding VS, but I am unsure how to use that VS to only forward traffic from the subnet that is routed to the LTM to the subnet whose default gateway is on the firewall. Any help would be greatly appreciated!
hooleylistCirrostratus
Hi,
Do you have the 172.16.39.138:443 virtual server enabled on VLAN 3? If not, is there a reason you don't want to?
Aaron
mikand_61525When you create your vserver_forward you can limit it to which vlan its exposed to.
From your description is this correct?
LTM intA: 192.168.1.0/24 (VLAN1, connected to external-FW)
LTM intB: 172.16.5.0/24 (VLAN2, connected to internal-FW)
then how is VLAN3 connected (since you use terms like upstream firewall, FW and then just firewall - is it three different type of firewalls connected on each interface on your LTM)?
Could you perhaps setup a drawing of this and upload it to bayimg.com or such (and then put a link in here to this drawing)?