For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Ilian_Ivanov's avatar
Ilian_Ivanov
Icon for Nimbostratus rankNimbostratus
Mar 20, 2017

IPsec tunnel mode

Can I use F5`s external floating IP for a IPsec peer tunnel local address? Also, is that gona have a negative impact to any production traffic going trought the floating IP?

 

For example: External floating IP: 1.1.1.1/24

 

And one more question: Can I use 1.1.1.2 for peer IP if it is not configured as self IP?

 

I have read that article: https://support.f5.com/kb/en-us/products/big-ip_ltm/manuals/product/tmos-implementations-11-2-0/11.html but its not clear what IP address should be used for tunnel local address.

 

application delivery
BIG-IP
LTM

1 Reply

  • Ilian_Ivanov's avatar
    Ilian_Ivanov
    Icon for Nimbostratus rankNimbostratus
    May 23, 2017

    Update:

     

    So.. the F5 floating IP can be used as a peer tunnel local address (actually you must use self or floating IP). In my case there were no impact on any production traffic. The IPsec tunnel is running as expected.