Source IP routing from external server

Question

&nbsp;&nbsp;
&nbsp;----------------               ------------------
&nbsp;Source 1                       Source 2
&nbsp;----------------               ------------------
&nbsp;       |                                     |                                
&nbsp;    VLAN X                                   |                                
&nbsp;       |                                  VLAN X                            
&nbsp;       |                                     |              
&nbsp;---------------------------------------------------
&nbsp;-    10.10.10.1 virtual server 1   10.10.10.2 = virtual server 2
&nbsp;-                    F5 LTM                       -
&nbsp;-    172.18.10.1 +.2               172.18.10.3 +.4  (internal)
&nbsp;-                                                 -
&nbsp;---------------------------------------------------
&nbsp;       |                                  |                                
&nbsp;      VLAN A                          VLAN A
&nbsp;       |                                  |                                
&nbsp;     server  1+2                      server 3+ 4&nbsp;
&nbsp;Loadsharing from virtual server 1 goes to server 1+2
&nbsp;Loadsharing from virtual server 2 goes to server 3+4
&nbsp;Case is that we would like to be able to make source routing from e.g. source 2 by first going with request from this source to virtual server 1 (old known address for them) and then route requests and answers to the virtual server 2 that load balance with to different servers that the ones connected with the first server. It is to make changes internally transparent and invisible from servers connecting to the old virtual server 1. Virtual server 2 will be visible and used for new connecting servers.
&nbsp;Any suggestion for implementation of this ?&nbsp;

manuel_gabaldon · Answer

Hi!!&nbsp;
&nbsp;So you've got some people pointing to virtual server 1 and some other (the new connections) pointing to virtual server 2. And you'd like to forward connections to VS 1 to the servers 3+4 without forcing the external servers to change the address to VS 2, right?&nbsp;
&nbsp;well, you can do it by choosing the load balancing pool based on the client IP address. If the client IP address belongs to some IP network, then use this other pool.&nbsp;
&nbsp;Is that right? If so, We'd be glad to help.
&nbsp;Regards.&nbsp;

jespjens_42843 · Answer

Hi, This is the set-up and intended setup. Note that some will still go to server 1 and loadbalance on server 1+2. So it is only for a selected number of IP addresses that we should do this routing. BR Jesper

manuel_gabaldon · Answer

As I said, you don't need to force a redirection to the new virtual IP address, &nbsp;
&nbsp;you can do it this way:&nbsp;
&nbsp;when CLIENT_ACCEPTED {
&nbsp;  if { [IP::addr [IP::client_addr] equals 10.10.10.10] } {
&nbsp;     pool my_pool
&nbsp; }
&nbsp;}&nbsp;
&nbsp;http://devcentral.f5.com/Wiki/default.aspx/iRules.IP__addr&nbsp;
&nbsp;BR

jespjens_42843 · Answer

OK - I understand thanks. We will try this one. BR Jesper

Forum Discussion

Source IP routing from external server

4 Replies

Recent Discussions

Chrome V 124+ on MacOS - Virtual Server Access Issue

F5Access | MacOS Sonoma

Transaction looks successful but file not downloading

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

F5 Access Guard Deprecated: ZTA APM

Related Content

CSV to Address External Datagroup File

Source IP Based Pool Routing

F5 BigIP External Authentication and NTP servers in non default route domain.

SNI Routing with DNS Lookup

How to ensure source address and source port are accepted and traversed properly via F5 SNAT automap