Forum Discussion

Nimbostratus

Aug 20, 2008

Load Balancing Design Question

We have the following setup internet --> Cisco PIX firewall --> F5 LTM (sits in DMZ segment) --> Web Servers (sits in private DMZ segment) The F5s are set up with...

config

design

JRahm

Admin

Aug 20, 2008

The LTM does route, actually. You need to setup ip forwarding virtuals to accomplish this. You can do it globally by entering a forwarding virtual with 0.0.0.0/0 applied to all vlans, which will allow all packets to route (assuming the necessary routes are in the routing table). If you want to be more granular, you can apply 0.0.0.0/0 to your private DMZ network only and match it with a default route to your PIX, then setup network-specific forwarding virtuals to your internal networks and apply these where appropriate (the forwarding virtuals should be applied to the vlans where the traffic is coming from, not where it is going) Post back if you have any questions.

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Load Balancing Design Question

F5 Academies Are Back – And We’re Coming to a City Near You

Introducing the F5 Application Study Tool (AST)

Recent Discussions

F5 Health Monitor Receive String as JSON

Rewrite content in XML schema file.

DNS Request to VS?

Guide for exam 402 F5 Certified Solution Expert

HA pair when both Tenants reside on the same Velos chassis

Related Content

DNS/iQuery Question - Design Consideration

Active/Active load balancing examples with F5 BIG-IP and Azure load balancer

Load Balancing TCP TLS Encrypted Syslog Messages

Mitigating OWASP Web Application Risk: Insecure Design using F5 XC platform

F5 BIG-IP in Cisco ACI Multi-Site and Multi-Pod - Design Options

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS