Unable to communicate with VIP in new external VLAN (dmz)

Question

Adding 2nd DMZ VLAN, unable to ping Virtual Server in that new VLAN.&nbsp;
We are running F5 VE v13.0 , we have internal virtual servers and external (dmz vlan1) virtual servers. We have added a new vlan (dmz vlan2) in our dmz and would need to create a virtual Server and assign an IP from that ip range. The physical nic of our ESXi for external network is connected to a trunk port in our DMZ switch, that port is trunked for vlan1 and vlan2. We have created a new VIP with an IP in the new range of vlan2 , the member server is in than vlan2 and the status is green. From SSH , i can ping that server in vlan2 but not the new VIP in that same vlan.&nbsp;
Do i need to tag my vlan's on the interface connected to the dmz ? do i need to configure trunking ?&nbsp;
Appreciate your help. &nbsp;

simon_blakely · Answer

You can either have a single untagged vlan associated with an interface, or the vlans need to be tagged.&nbsp;
I'd start with ensuring that the vlans are tagged on the interface.
Ensure you have a non-floating and a floating self-ip on the vlan.
Assign the floating self-ip to a traffic group, and ensure your VIP is also assigned the correct traffic-group.&nbsp;

Forum Discussion

Unable to communicate with VIP in new external VLAN (dmz)

Recent Discussions

Big IP DNS Failover

AS3 Limitations

Diameter iRules attachment?

Help needed with iRule (connection closed log )

Use of SSL Decryption.

Related Content

2025 Community MVP Announcement

Community at AppWorld 2025

DevCentral Community Guidelines

DevCentral Community Ranking Explained

Community Learning Path: Multi-Cloud Networking

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS