Nimbostratus
Nimbostratus
Thanks for your comment. The issue currently we are having that is causing us not to cutover to production with F5 box is that when active F5 failed scenario is tested, standby F5 becomes active but 20% of the time ping packets gets lost for 10 packets instead of 1 packet restoring the services to the clients without loosing their sessions. Currently there is case with F5 and support engineers in Singapore is looking into it. At this point in time F5 is treating it as a bug in F5 and trying to come up with the hotfix. We have only two F5 and I need to load balance webfacing application servers as well as application servers in my internal application servers that cannot have access from the web facing subnets. Risk of using route mode config for F5 is during rules modifications if something goes wrong then there is a risk of webfacing vlans can be routed to internal Vlans without going through firewall. This is my high level understanding. F5 has not come back to me officially with their perspective yet. I want to know how many installations are using Layer 2 and their issues in on going management and support. Thanks. Prakash