Forum Discussion

Nimbostratus

May 20, 2018

VPN s2s through F5 LC with ASA like Endpoint

Hi, i have the next situation: Internet -> F5 LC -> Cisco ASA I understand that 2 VS must be configured, 1 for incoming traffic and 1 for outbound traffic: VS incoming traffic: Pe...

Cumulonimbus

May 21, 2018

Hi Christian,

In Fact you have 2 VS to deploy

VS incoming traffic: Internet -> F5 LC -> Cisco ASA

Set it to L4 VS...

VS Outgoing traffic: -> Cisco ASA F5 LC -> Internet

For this VS don't forget to uncheck "Address Translation" and "Port Translation" in VS settings. an L4 Vs is OK.

Additional you have to configure NAT Traversal on you Peer that perform VPN. More I think that you have to stick VPN on on ISP only. IF your external FW can setup is vpn with multip IP it will work. If not you have to set your inbound traffic just trough on IP/ISP.

Hope it's clear. keep me update.

REgards

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

VPN s2s through F5 LC with ASA like Endpoint

Recent Discussions

Background Tasks

APM with EntraID as idP / request signed

Should config via cli rather than gui?

APM Modern Customization - modify Header in user-common.js and form in user-logon.js

Which process is consuming higher CPU

Related Content

Apache Airflow Unsafe API Endpoint

F5 Cloud Failover Extension (CFE), private endpoints, and custom DNS

BIG-IP Next Automation: Working with the AS3 API endpoints

Cisco ACI Endpoint Learning with a BIG-IP HA Failover

Using VPC Endpoints with Cloud Failover Extension

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS