Forum Discussion

MVP

Nov 24, 2013

IPSec with BIG-IP as end point questions

it is good F5 decided to support this a while ago, but the documentation could be a little better. now it is some general remarks and then one example. my main question is about the "forwarding ...

BIG-IP

BIG-IP Access Policy Manager (APM)

Cirrostratus

Nov 25, 2013

Hey Boneyard. I've no experience with this but I can say with certainty that it will work with other VLANs and names at least.

I've had a quick look through the guide. From what I can tell you cannot use the management IP address and it must be a self IP address.

I think you could configure the Forwarding VS as something other than : but you'd need to do this carefully. Perhaps just use the remote network subnet for instance. Obviously it's the Traffic Selector that defines what actually passes through the tunnel.

Cluster wise, I can't test in any way but if the IPsec configuration syncs between devices and you can use a floating self IP then you've some level of redundancy but I'd assume the tunnels would be deleted and recreated on a failover.

Forum Discussion

IPSec with BIG-IP as end point questions

Recent Discussions

BWC iRule

Citrix XenServer Big-IP Upgrade help

iRule condition - request contains more than 10000 parameters

Hi All, We have viprion 4300 with 4450 blades with 6 blades all blades having same configuration

Can iRule be used to perform exception of IPI category based on Geolocation

Related Content

BIG-IP to Azure Dynamic IPsec Tunneling

Getting Started with BIG-IP Next: Fundamentals

Re: Get Started with BIG-IP Virtual Edition (VE), BIG-IQ VE or BIG-IP Cloud Edition Trial

BIG-IP Report

Create F5 BIG-IP Next Instance on Proxmox Virtual Environment