Link Controller Setup

Question

Hello,&nbsp;&nbsp;
I have a LC with three routers and four links L1,L2,L3,L4.&nbsp;
&nbsp;The customer requirement is two load balance outbound and inbound traffic.&nbsp;
&nbsp;1-For the outbound traffic the requirements are
&nbsp;a-To load balance vpn over the three links L1, L2 and L3 “equally”.
&nbsp;b-To load balance all other traffic (web browsing) over the link L4 and if this link reaches its limit, to load balance on the other three links L1, L2, and L3 and use only 1Mbps on each link.&nbsp;
&nbsp;So the question is how I am going to created policy or configure the link controller in this case? Since in the Link Controller “Links” Tab, I can create a link and set the bandwidth or even add cost load balancing.
&nbsp;But how the F5 will distinguish if the link for browsing has reached the limit to use only 1Mbps from each other three links?&nbsp;
&nbsp;2-For inbound traffic:
&nbsp;a-The published website for the customer will be initiated from the outside, so do I need a wide ip and a listener in this case?  Or I just create VS with public ip address and direct the traffic to the inside?&nbsp;
&nbsp;3-Moreover, I have initially configured the LC, and bind monitor(icmp_gateway) to the Link  but the Link is unavailable due to the monitor failure. i tried to use another monitor but is giving me error “bigip_link from gtmd : no reply from big3d: timed out”. I restarted the big3d service and the Link stays unavailable with the same error.&nbsp;
&nbsp;Kindly I need your assistance.&nbsp;&nbsp;
&nbsp;Regards,
&nbsp;George&nbsp;&nbsp;

&nbsp;

&nbsp; &nbsp;
 &nbsp;

boneyard · Answer

where you able to work these issue out?

techgeeeg · Answer

Hi George, 
&nbsp; First of all I am sure you know that Point to Point IPSEC VPN due to its nature can not be load balanced ... so when you are saying load balancing vpn what I understand is that you are talking about client vpn connecting to the site, m I correct or not? If it is about client to site VPN then yes the load balancing is possible and what you have to do is to create a wideip and bind this wide ip to a pool which will have three members from each ISP IP which then finally points to your inside VPN device to terminate the connection. May be I have explained it in a very highlevel way to make u understand the senario if yes let me know then i will explain in detail.The browsing can be kept on a single fourth ISP and if the traffic increases the further traffic can be sent to other links but Which version of TMOS are you running on LC????

jose_j_106517 · Answer

For the second question, Is there any about Inbound traffic?? I´m in the same scenario.&nbsp;

bhs_114985 · Answer

this may give you guys some good ideas about how to set it up. All the reference architectures are in there.&nbsp;
LC Team Training&nbsp;

antonius_120044 · Answer

how about contentiously traffic was came though F5 growth high, in behalf case server was down? &nbsp;

Forum Discussion

Link Controller Setup

Recent Discussions

F5 looses the token for the first call

iRule - Url rewrite and header replace and pool selection not working

Switch ssl profile based on weak cipher detection via IRULE

full-proxy HTTP2

Decode ObjectSID from Base64-encode string

Related Content

Anchor Link Redirect

JWT authorization with NGINX Ingress Controller

Persisting SNAT Addresses in Link Controller Deployments

Distributed caching of authentication requests with NGINX Ingress Controller

Overview of API Access Control and implementing API key access control with BIG-IP APM

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS