Loadbalance the loadblanced traffic with in the same Pool member range!

Question

for example we have an vip range. 10.10.10.x and pool range 10.10.11.x with two vips and have two pools one for each pool and each pool with two nodes. No snating. and we are facing issues...&nbsp;
the traffic from internet hits th vip1=&gt;pool1=&gt;node1 or 2.. and the traffic is proxied to vip2=&gt;pool2=&gt;node1 or 2 and gets back to the pool1 nodes and gets back to the requester.&nbsp;
looking for a optimum solution either snating will work or any others..design changes are needed.&nbsp;

jason_40733 · Answer

Not clear what issues you are having. We do have a two stage application with MS Single Sign On using our F5's to load balance.  We use SNAT on both VIPs.  &nbsp;
Setup:
Proxy VIP facing the internet.  It SNATs to two proxy servers.   The proxy servers refer to a Federated server VIP.  That Federated VIP then SNATs to two Federated servers.    The reply flows back with a SNAT at each level and back to the original client.  Our Proxy and Federated servers are in the same subnet.&nbsp;
Internet -&gt; "Proxy VIP" -&gt;(SNAT) "PROXY server" -&gt; "Federated VIP" -&gt; (SNAT) "Federated server"&nbsp;
It has been running and stable for us for over a year with a couple thousand users and about 8 external partner applications.&nbsp;

satish_81675 · Answer

thank you for the reply, we dont snat the Trafic in the DMZ and wanted to see if that is the only other way.

jason_40733 · Answer

So if I have this correctly...  both of your VIPs are on 10.10.10.x  and all four of your pool members are on 10.10.11.x.

If you have a loopback IP address of your VIP2 on your Pool2 members.  They should respond to the Pool1 members directly with the IP of VIP2.

You would probably also want a loopback address of your VIP1 on your Pool1 members.  Not sure if that would work for you or not, but it might be worth a try.

what_lies_bene1 · Answer

Can you describe your network setup a bit more please? Is the F5 the default gateway for the servers? If so, you could do this without NAT, particularly if the servers terminate the traffic that comes in via Virtual Server 1.

satish_81675 · Answer

also the f5 is the default gateway for all the pool members, how to setup the loopback IP address, .....sorry can you pelase explain...

Forum Discussion

Loadbalance the loadblanced traffic with in the same Pool member range!

7 Replies

Bram - January 2026 Featured Member

F5 Container Ingress Services (CIS) and using k8s traffic policies to send traffic directly to pods

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

Single LTM with multiple GTM domains

Question about adding VEs to existing physical appliance device group without ASM licenses

2026 301a exam

How can I measure Advanced WAF (ASM) throughput on a running BIG-IP VE (per VIP / per policy)?

What is the best practice for migrating from iseries to rseries?

Related Content

F5 Container Ingress Services (CIS) and using k8s traffic policies to send traffic directly to pods

S3 Traffic Optimization with F5 BIG-IP & NetApp StorageGRID

F5 Distributed Cloud - Traffic Steering based on Client IP Address

Decrypting TLS traffic on BIG-IP

Understanding Performance Metrics and Network Traffic

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS