F5 is upgrading its customer support chat feature on My.F5.com. Chat support will be unavailable from 6am-10am PST on 1/20/26. Refer to K000159584 for details.

Forum Discussion

invisible's avatar
invisible
Icon for Nimbostratus rankNimbostratus
Apr 18, 2017

LTM 13.0 Unable to create IPSec with traffic domain other than 0

Two F5 LTM VE systems. upgraded to 13.0   The goal is to create IPSec Tunnel when traffic selector is at non-0 Route Domain. IPsec tunnel works(ed) with only route domain 0.   There are: 1. Tw...
application delivery
BIG-IP
big-ip ltm
ipsec
LTM
security
zeiss_63263's avatar
zeiss_63263
Historic F5 Account
Aug 14, 2017

Route-Domains + IKEv1 IPsec are now fully supported in 12.0.0. If your IPsec needs to cross route-domains, meaning that the external and internal VLANs in different route-domain, then IPsec "interface mode" is your best option. You create the IPsec and tunnel configuration in the /Common partition. Create the route-domains (and/or partitions) with internals VLANs and self IPs. Place the IPsec tunnel (interfaces) into the relevant route domain.