Proxy on LTM

Question

Hi All: 
&nbsp;  
&nbsp; I have been asked to setup proxy on LTM for inbound and outbound connection. Following is the logical setup: 
&nbsp;  
&nbsp; Internet 
&nbsp;  | 
&nbsp;  | 
&nbsp;  | 
&nbsp; External Firewall 
&nbsp;  | 
&nbsp;  | 
&nbsp;  | 
&nbsp; F5 6900 
&nbsp;  | 
&nbsp;  | 
&nbsp;  | 
&nbsp; Internal Firewall 
&nbsp;  | 
&nbsp;  | 
&nbsp; Servers 
&nbsp;  
&nbsp; For inbound proxy I was thinking of setting up virtual server for each server. Virtual server IPs would public IPs. Please let me know if this is the correct approach. 
&nbsp;  
&nbsp; For outbound proxy the connections would be initiated by servers towards hosts on Internet. For this setup I am thinking of setting up virtuals for Internet hosts with SNAT automap on (external IP on LTM is a public IP). Please confirm if this is a correct approach. 
&nbsp;  
&nbsp; I cannot use SNAT for inbound and outbound connections because of PCI compliance issues, it has to be to proxy as per PCI. 
&nbsp;  
&nbsp; Please let me know of your opinions on this. 
&nbsp;  
&nbsp; Thanks, 
&nbsp; Ijaz

the_bhattman · Answer

Hi Ijaz, 
&nbsp;  
&nbsp; Will the proxy be something that involves a pacfile or static entry on a browser for internet traffic? or will it be something that will be completely transparent?  
&nbsp;  
&nbsp; CB

Forum Discussion

Proxy on LTM

Recent Discussions

AS3 Limitations

Diameter iRules attachment?

Help needed with iRule (connection closed log )

Use of SSL Decryption.

VLAN Failsafe Functionality

Related Content

Use F5 LTM as HTTP Proxy

Proxy Protocol v2 Initiator

Intelligent Proxy Steering - Office365

Proxy Protocol Initiator

What is a Proxy?

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS