Self IP for SNAT VLAN, OK. How about for VIP and HA?

Question

I've got an Active/Passive cluster and have configured static self IPs on both devices along with a floating IP in the internal SNAT VLAN. I'm not using the F5 to act as a Gateway for the nodes and instead return to our firewall/router for Gateway instead. Are self IPs necessary in VLANs configured for HA and Virtual Servers? If so, are static IPs sufficient or is a floating IP required/recommended?

chause1 · Answer

Hi&nbsp;Not sure if I understand the configuration correct but lets give it a go.&nbsp;Your self's are needed as they are used to monitor the application. (Lets say via a icmp/tcp/http monitor)&nbsp;Your float is important on the HA side of things as well as the flow of the traffic. This IP will move between the devices in the HA pair when failover occurs.&nbsp;Normally your traffic is expected to flow back via the F5 for the response.In most cases SNAT/Auto map will be used, which is configured on the VIP.  (If it is auto map it will prefer to use your floating IP for that vlan)This will avoid that the traffic is sent to the GW and rather returns via the F5&nbsp;Hope this helps&nbsp;

Forum Discussion

Self IP for SNAT VLAN, OK. How about for VIP and HA?

1 Reply

Recent Discussions

enable tls1.2 on management interface on F5 ltm running version 10.x

SMS server with BIGIP

F5 terminal - help to run commands - disk space full

Can iRule be used to perform exception of IPI category based on Geolocation

[ASM] - what is "Browser Challange file" ?

Related Content

2 internal server vlans

Disable Inter-VLAN Routing?

VLAN Group and Asymmetric Deployment

F5OS API - not able to create vlan

LTM: Per-VLAN Default Gateways