F5 is upgrading its customer support chat feature on My.F5.com. Chat support will be unavailable from 6am-10am PST on 1/20/26. Refer to K000159584 for details.

Forum Discussion

Spidey_29396's avatar
Spidey_29396
Icon for Nimbostratus rankNimbostratus
Jul 20, 2014

SIte to Site VPN passing through F5

Hello,

 

Our client have 2 firewalls, 2 ISPs, one catering corporate intenet and the other public server. Once one of the ISP links went down, they have to manually redirect traffic to other ISP, now they had purchased an LTM to load balance the ISPs,i have two questions:

 

  1. do we need to change the IPs of firewall from Public to Private?
  2. they are using site to site VPN, what should be the configuration of F5 for this to work?

Thanks!

 

1 Reply

  • MichaelatF5's avatar
    MichaelatF5
    Icon for Employee rankEmployee
    Jul 29, 2014

    Just to be clear on my understanding, your clients want to load balance ISP connections?

     

    What they probably should look at is Link Controller, as LTM is more of a reverse proxy / application load balancer. LC: https://f5.com/products/modules/link-controller

     

    The configuration for LTM may be more complex than its worth from a supportability standpoint. It would make more sense if they had multiple VPN end points that they wanted to load balance.

     

    That said, the F5 can support a single arm configuration (not changing IPs), and you would probably want to start with L4 Forwarding for testing.