Forum Discussion
nitass_89166
May 14, 2015Noctilucent
Indeed this is what I mean. Can you pls be more explicit as how to configure this ?
bigip has 2 vlans; one is external which is in 172.28.24.0/24 and the other one is v423 which is in 200.200.200.0/24. virtual server bar is network, 200.200.200.0/24, virtual server listening on external vlan. pool is 172.28.24.254 which is gateway in external vlan.
when traffic matches the virtual server bar, it will be forwarded to the gateway. you can check mac address in tcpdump.
selfip
root@(ve11c)(cfg-sync In Sync)(Active)(/Common)(tmos) list net self
net self 172.28.24.14/24 {
address 172.28.24.14/24
allow-service {
default
}
floating enabled
traffic-group traffic-group-1
unit 1
vlan external
}
net self 200.200.200.14/24 {
address 200.200.200.14/24
allow-service {
default
}
floating enabled
traffic-group traffic-group-1
unit 1
vlan v423
}
configuration
root@(ve11c)(cfg-sync In Sync)(Active)(/Common)(tmos) list ltm virtual bar
ltm virtual bar {
destination 200.200.200.0:0
mask 255.255.255.0
pool foo
profiles {
fastL4 { }
}
source 0.0.0.0/0
source-address-translation {
type automap
}
translate-address disabled
translate-port disabled
vlans {
external
}
vlans-enabled
vs-index 8
}
root@(ve11c)(cfg-sync In Sync)(Active)(/Common)(tmos) list ltm pool foo
ltm pool foo {
members {
172.28.24.254:0 {
address 172.28.24.254
}
}
}
test
[root@ve11c:Active:In Sync] config tcpdump -e -nni 0.0 -s0 port 80
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on 0.0, link-type EN10MB (Ethernet), capture size 65535 bytes
17:42:43.064595 00:50:56:b3:59:8d > 00:50:56:93:16:39, ethertype 802.1Q (0x8100), length 85: vlan 4093, p 0, ethertype IPv4, 172.28.24.1.52133 > 200.200.200.101.80: S 75537079:75537079(0) win 5840 in slot1/tmm1 lis=
17:42:43.064682 00:50:56:93:16:39 > 00:01:e8:d5:d4:47, ethertype 802.1Q (0x8100), length 96: vlan 4093, p 0, ethertype IPv4, 172.28.24.14.52133 > 200.200.200.101.80: S 75537079:75537079(0) win 5840 out slot1/tmm1 lis=/Common/bar
arp
root@(ve11c)(cfg-sync In Sync)(Active)(/Common)(tmos) show net arp 172.28.24.254
------------------------------------------------------------------------------------------
Net::Arp
Name Address HWaddress Vlan Expire-in-sec Status
------------------------------------------------------------------------------------------
172.28.24.254 172.28.24.254 00:01:e8:d5:d4:47 /Common/external 127 resolved
- cmard_195831May 14, 2015NimbostratusHello Nitass, I will try this out and come back to you for any further clarification. BR
- cmard_195831May 15, 2015NimbostratusHello Nitass, Finally the penny drop as how the networking on the F5 works. Basically you need to attach to the interface where initiator traffic is coming a VS in order to receive the data, and then the static routing will take care from which interface and where the packets will go. tx