SIte to Site VPN passing through F5

Question

Hello,&nbsp;
Our client have 2 firewalls, 2 ISPs, one catering corporate intenet and the other public server. Once one of the ISP links went down, they have to manually redirect traffic to other ISP, now they had purchased an LTM to load balance the ISPs,i have two questions:&nbsp;
do we need to change the IPs of firewall from Public to Private?they are using site to site VPN, what should be the configuration of F5 for this to work?
Thanks!&nbsp;

michaelatf5 · Answer

Just to be clear on my understanding, your clients want to load balance ISP connections?&nbsp;
What they probably should look at is Link Controller, as LTM is more of a reverse proxy / application load balancer.  LC:  https://f5.com/products/modules/link-controller&nbsp;
The configuration for LTM may be more complex than its worth from a supportability standpoint.  It would make more sense if they had multiple VPN end points that they wanted to load balance.&nbsp;
That said, the F5 can support a single arm configuration (not changing IPs), and you would probably want to start with L4 Forwarding for testing. &nbsp;

Forum Discussion

SIte to Site VPN passing through F5

1 Reply

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

2026 301a exam

F5OS login with admin/root failed via console

VIP is not responding on SYN after enabling other modules like ASM, APM and AFM.

UCS Encryption Question

Unblock Request WAF

Related Content

F5 BIG-IP Multi-Site Dashboard

Regional Edge Resiliency Zones and Virtual Sites

Migrating between sites using stretched VLANs

Site-to-Site Connectivity in F5 Distributed Cloud Network Connect – Reference Architecture

F5 Distributed Cloud: Virtual Sites - Regional Edge (RE)

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS