Forum Discussion

Nimbostratus

Apr 21, 2014

Multi tenancy design, Route domain

Dear Techies, For Cloud design The following are the design options considered for the Implementation of F5. we have F5 1600 having Four Gigabit Copper Interfaces. Creation of three Admi...

Cirrostratus

Apr 23, 2014

A few questions so I fully understand before I comment;

Are the switches just operating at L2 (all the L3 is on the firewall and/or F5) or do they have a L3 interface for each 'internal' VLAN too?
Rather confusing the VLANs are nearly all called Internal, shouldn't 201 onwards be called external?
I assume you have static routes in place on the firewall for the VIP ranges, pointing to the F5?
VRFs operate at layer three don't they? If the switches don't have L3 interfaces surely there is no need for VRFs? I could be wrong, it's been a while since I've used them. Or is there a need to absolutely have a routed subnet for every tenant regardless, even if the seperation is just via VLANs?

Forum Discussion

Multi tenancy design, Route domain

Recent Discussions

Rundeck ansible F5 errors

What is the meaning is 52% block in WAF

rewrite Azure AD response for portal access via web portal

AS3 Monitoring multiple ports selectively

Open Redirection Mitigation

Related Content

F5 BIG-IP in Cisco ACI Multi-Site and Multi-Pod - Design Options

Mitigating OWASP Web Application Risk: Insecure Design using F5 XC platform

Verified Design: SSL Orchestrator with Palo Alto NGFW Virtual Edition-Part 1

Enriching AFM with public domain Threat Intelligence

Verified Design: SSL Orchestrator with McAfee Web Gateway-Part 1