PBR Transparent Proxy Pool

Question

Hi all&nbsp;Trying to establish the best way to achieve a Transparent proxy pool on an F5 VIP if it is possible. &nbsp;Essentially want webtraffic directed to the F5 to be load balanced to a pool of transparent proxies.&nbsp;Router doing Policy Based routing to send any LAN TRAFFIC 80+443 traffic to a VIP on an F5.  This i would require PBR on the F5 as well as the VIP is advertised from a selfIP on the F5. &nbsp;Even with both PBRs in place  is this something that is achievable on the F5? &nbsp;what type of VIP would be required for this?&nbsp;----------------------------------------------------------HOST: 1.1.1.1  [website.com 5.5.5.5:80] 1.1.1.1 &gt;&gt; 1.1.1.2 RTR: 1.1.1.2 [PBR - 1.1.1.1 DST 80 nexthop set 3.3.3.3]2.2.2.1 &gt;&gt; 2.2.2.2  F5: 2.2.2.2 [PBR - 1.1.1.1 DST 80 nexthop set 3.3.3.3]2.2.2.2 &gt;&gt; 3.3.3.3  F5: 3.3.3.3 [VIP with Transparent Proxy Pool 4.4.4.0l]----------------------------------------------------------&nbsp;

simon_blakely · Answer

The BigIP lets you create 0.0.0.0:80/0.0.0.0:443 fastl4 listeners that captures all traffic with a destination port of 80/443 that is sent to the floating self-IP (i.e as a gateway) (that does not match a more specific listener).

The listeners then forward the traffic to the pool of proxies (with or without address translation as required).

Forum Discussion

PBR Transparent Proxy Pool

Recent Discussions

Big IP DNS Failover

AS3 Limitations

Diameter iRules attachment?

Help needed with iRule (connection closed log )

Use of SSL Decryption.

Related Content

Integrating SSL Orchestrator with McAfee Web Gateway-Transparent Proxy

Integrating SSL Orchestrator with Symantec ProxySG: Transparent Proxy

Integrating SSL Orchestrator with CheckPoint Firewall VM-Transparent Proxy

Transparent load balancing in Azure, Part 2

Fileless Malware, Anti-Cheat Transparency, & NGINX OSS Security Policy

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS