Forum Discussion
hooleylist
May 28, 2009Cirrostratus
Is this LDAP traffic for load balancing or admin authentication? I'm assuming it's the former.
I assume the load balanced traffic from LTM to the LDAP pool is going out a switch interface and you just can't add the static self IP addresses to the firewalls? If so, I imagine you could technically create an admin route (b mgmt route from the command line) which points the LDAP destined traffic over the mgmt port. I'm not sure if you just get warning messages or if the route is ignored.
If you're actually trying to route load balanced traffic out the management port, it's strongly discouraged. The mgmt port should be isolated from client traffic so the mgmt interface will be available to administrators. Also, the mgmt port is limited to 100Mb. I'm sure there are other reasons to avoid this as well.
Are you sure it's not possible to allow monitor traffic via the switch ports? That's the best practice method for a reason.
Aaron