Source based routing (Policy based routing) on BIG-IP F5

Question

I've multiple DHCP pools for different VPN profiles (Different subnets) on BIG-IP APM, and I want to route internet traffic for the users through VPN (Force all traffic through VPN), I have multiple self IPs through which I have connectivity to different sub-interfaces on perimeter firewall and core firewall.&nbsp;
My current routing table is as below&nbsp;
Internal subnet &gt; Core Firewall&nbsp;
Default Route&gt; Perimeter Firewall (DMZ Interface)&nbsp;
My default route on the BIG-IP F5 is the sub-interface of perimeter firewall which is in DMZ to entertain the requests from internet coming to the DMZ.&nbsp;
By default, all the internet traffic coming from VPN users take default route and hit's DMZ interface on the perimeter, but I want to forward all VPN users traffic to another sub-interface of the perimeter firewall (using another self IP), how I can achieve this?&nbsp;
I want to do routing as below&nbsp;
Source = VPN_SUBNET &gt; NEXT_HOP (DEFAULT ROUTE) = PERIMETER LAN_INTERFACE &nbsp;

petewhite · Answer

Create a Performance L4 VS on the input VLAN with the pool as the gateway ( set translate address and port to off ).&nbsp;

Forum Discussion

Source based routing (Policy based routing) on BIG-IP F5

Recent Discussions

Client SSL Profile set to Require Client Certificate breaks RDP in APM

TS Declarations for DNS

APM file and registry key date check 8 days old

SSL bridging without SSL proxy forward

Should config via cli rather than gui?

Related Content

Policy Routing in Multi-Arm Deployment

Disable Inter-VLAN Routing?

Load Balancing versus Application Routing

Understanding BGP Route Reflection headers

Demo: Multi-Cloud Networking and transit routing with F5 Distributed Cloud

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS