Route domains with shared internet

Question

Hi everyone.
&nbsp;My customer wants to separate servers and traffic of it's business units. So each BU will have it's dedicated route domain together with it's servers.
&nbsp;However, there is only 1 connection to internet, that must be shared among all BUs. Some applications have to be also available from internet.
&nbsp;How do I configure the route domains, so each BU can access it's servers from internet?
&nbsp;Any thoughts?&nbsp;
&nbsp;Thanks!&nbsp;

hooleylist · Answer

I think you could configure the same gateway in each route domain.  Or you could potentially create a route valid for one RD to cross another: 
&nbsp;  
&nbsp; sol10287: Routing across route domains 
&nbsp; http://support.f5.com/kb/en-us/solutions/public/10000/200/sol10287.html 
&nbsp;  
&nbsp; Aaron

sekihirakousen_ · Answer

In the case of version 11.1.0, what to configure how? 
&nbsp; I can't configure "Routing across route domains.".

nitass · Answer

In the case of version 11.1.0, what to configure how?  
&nbsp; I can't configure "Routing across route domains.".what error did you get?

sekihirakousen_ · Answer

Thank you for your reply!! 
&nbsp; The following errors are displayed.  
&nbsp; "Caught configuration exception (0), Cannot get device index for VLAN101 in rd100 - ioctl failed: No such device - net/validation/routing.cpp,"

nitass · Answer

can you open a support case to verify if it is a bug? 
  
 this is mine. 
  
 root@(B11000-R36-S16)(cfg-sync Standalone)(Active)(/Common)(tmos) show sys version

Sys::Version
Main Package
  Product  BIG-IP
  Version  11.2.1
  Build    797.0
  Edition  Final
  Date     Thu Sep 20 09:35:47 PDT 2012

root@(B11000-R36-S16)(cfg-sync Standalone)(Active)(/Common)(tmos) create net vlan vlan100
root@(B11000-R36-S16)(cfg-sync Standalone)(Active)(/Common)(tmos) create net vlan vlan200

root@(B11000-R36-S16)(cfg-sync Standalone)(Active)(/Common)(tmos) create net route-domain rd100 id 100 strict disabled vlans add { vlan100 }
root@(B11000-R36-S16)(cfg-sync Standalone)(Active)(/Common)(tmos) create net route-domain rd200 id 200 strict disabled vlans add { vlan200 }

root@(B11000-R36-S16)(cfg-sync Standalone)(Active)(/Common)(tmos) create net self 100.100.100.100%100/24 vlanvlan100
root@(B11000-R36-S16)(cfg-sync Standalone)(Active)(/Common)(tmos) create net self 200.200.200.200%200/24 vlanvlan200

root@(B11000-R36-S16)(cfg-sync Standalone)(Active)(/Common)(tmos) create net route 0.0.0.0%100/0 interface vlan200
01070712:3: Caught configuration exception (0), Cannot get device index for vlan200 in rd100 - ioctl failed: No such device - net/validation/routing.cpp, line 353.

root@(B11000-R36-S16)(cfg-sync Standalone)(Active)(/Common)(tmos) create net route 0.0.0.0%100/0 gw 200.200.200.254%200
root@(B11000-R36-S16)(cfg-sync Standalone)(Active)(/Common)(tmos) list net route
net route 0.0.0.0%100/0 {
    gw 200.200.200.254%200
    network default%100
}

Forum Discussion

Route domains with shared internet

Recent Discussions

F5 looses the token for the first call

iRule - Url rewrite and header replace and pool selection not working

Switch ssl profile based on weak cipher detection via IRULE

full-proxy HTTP2

Decode ObjectSID from Base64-encode string

Related Content

DevCentral 2024 - Share Another Day

Share Your Expertise at F5 AppWorld 2025! CFP is now open.

When you accidentally share your secrets with the Internet

Shared Authentication Domains on BIG-IP APM

Knowledge sharing: F5 Software Upgrade/RMA process

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS