Forum Discussion
spmedge_85938
Jan 16, 2012Nimbostratus
Setup help
I am setting on my LB and have my ASA in front of both my LB and web servers. I have my virtual server set as 10.0.2.97 255.255.255.224 and having a NAT rule on my ASA with the public IP linking the virtual server IP. For my web server it is 10.0.1.101 255.255.255.224.
Will I get access to my web server with this setup? what will I need for this to be done? Also should I put the gateway for the web servers as my LB self IP or the virtual server IP?
- hooleylistCirrostratusAre you trying to use an LTM virtual server to load balance your web server(s)? Or are you trying to configure admin access through LTM to the web servers?
- spmedge_85938NimbostratusEven if the web servers are on 10.0.1.0 255.255.255.224 the virtual server that is using 10.0.2.97 it will still work? my firewall only has the interface for the public interface and inside IP as 10.0.2.x
- nitassEmployeecan you try something like this?
[root@ve1023:Active] config b virtual bar list virtual bar { pool foo destination 10.0.2.97:80 ip protocol 6 profiles { http {} tcp {} } } [root@ve1023:Active] config b pool foo list pool foo { members 10.0.1.101:80 {} }
- spmedge_85938NimbostratusThanks much for all the help. My biggest question is, if the web server 10.0.1.101 255.255.255.224 and the self IP of the F5 is 10.0.2.111 255.255.255.224 which I NAT in my firewall to a public IP how will the firewall know how to get to the web server? Or will this be manage by the F5? Do I have to have both the F5 and web server on the same subnet?
- nitassEmployeewill this be manage by the F5?yes. firewall has to do 1-to-1 nat between web server public ip and virtual server address e.g. 10.0.2.97.
Recent Discussions
Related Content
DevCentral Quicklinks
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com
Discover DevCentral Connects