F5 LTM VRF/ZONES

Question

Hi Team,&nbsp;
We are working in one Greenfield Implementation, where we are creating VRFs/Zones named Prod/Test/Dev into our setup(In routers/switches/Firewalls).&nbsp;
In every environment Prod/Test/Dev, we are advertising respective VLANs plus I am keeping one VIP segment too).&nbsp;
So, similarly we want to partition the BIGIP LTM too, we are using F5-BIG-LTM-2200S(Note the setup is small, so proposed model will suffice, so no vCMP supportive models are suggested).&nbsp;
Query:
1. How we will do that ? By Admin_Partitioning ? or do we also need to use Route-Domains ?&nbsp;
Regards
Parveez&nbsp;

jgranieri · Answer

I am more familiar with route domains. so basically you should create additional route-domains which are essentially similar to Cisco VRF's. You have the option to select strict-isolation which means the route domain routing table is exclusively used and if there is no match on a route it will use the default route within that RD. You should assign a physical interface north/south of the F5 for each particular route domain. basically you can duplicate VIP addressing on the F5. if you need any more pointers with route-domains let me know. If you are running 11.5 code and higher you can also use HA traffic-groups. so each VS within in each route domain should be configured in a specific traffic-group. that will allow that RD/Traffic-group to failover without impacting the other RD's.

Forum Discussion

F5 LTM VRF/ZONES

1 Reply

Recent Discussions

Maximum throughput of f5 ltm

Issue on license renewal

iRule cookie persistence and pool redirect

redirect not working

Access azure app service using f5 LTM

Related Content

Arabic Blackboard F5 series [LTM Idea] باللغة العربية

Virtual Server graphical App for F5 LTM

F5 LTM License

F5 LTM HA pair upgrade Automation using Python

F5 LTM