Forum Discussion

Cirrostratus

Apr 01, 2010

Mgmt Auth Traffic on external VLAN

I have connected my managment interface on a 6900 v10.1 box to a management network, and I have configured Active Directory authentication for management access. I was doing some testing and I disconn...

management

monitoring

JRahm

Admin

Apr 05, 2010

Option 1) Leave your configuration as is, with mgmt auth traffic riding your production data path. This isn't necessarily bad, but might conflict with security policies if in DMZ environment. I've seen many environments with this exact configuration as it is simpler and more cost effective than standing up additional infrastructure for management traffic.

Option 2) Define a nat on your gateway that you can point to as your mgmt auth target, which will then translate the destination to your real AD address, and translate the source of your mgmt IP to the gateway/nat so the traffic is returned correctly

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Mgmt Auth Traffic on external VLAN

F5 Academy at AppWorld 2026

Aswin MK - November 2025 Featured Member

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

F5 XC 503 upstream_reset_before_response_started{protocol_error}

CVE mitigation on F5 XC vs classic F5 WAF

F5 mssql health monitor failing

Could not communicate with the system. Try to reload page.

UCS Encryption Question

Related Content

S3 Traffic Optimization with F5 BIG-IP & NetApp StorageGRID

Mgmt monitor issue

External Monitor Information and Templates

TACACS+ External Monitor (Python)

CSV to Address External Datagroup File

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS