MAC masquerade - For Floating Self IPs vs Non Floating Self IPs

Question

We are currently having F5 LTM on v10.2.4. Trying to understand how does MAC masquerade work?&nbsp;
MAC masquerade per VLAN of Floating Self IP will be carried over between Active/passive pair.&nbsp;
But how does non floating Self IPs used for health check work? What will be the MAC address that will be used in this case?&nbsp;

nathe · Answer

Jayanthi, in v10, as you say, the MAC Masquerade address is configured on the VLAN (note in v11 it is configured on the Traffic Group as part of the new HA setup called DSC - see The BIG-IP system now associates masqueraded MAC address with traffic group
Anyway, yes you're are right on MAC Masquerading - see quote from article K7214 Upon failover, the shared MAC address(es) float to the newly-active BIG-IP system along with the shared IP addresses.
In regards non-floating self IP address, as they don't failover as part of an active/standby setup this precludes the need for MAC Masquerade  and each device in a HA pair will communicate to the backend pool members from their own individual IP address/MAC address.
Hope this helps,
N

Forum Discussion

MAC masquerade - For Floating Self IPs vs Non Floating Self IPs

1 Reply

Recent Discussions

Rundeck ansible F5 errors

What is the meaning is 52% block in WAF

rewrite Azure AD response for portal access via web portal

AS3 Monitoring multiple ports selectively

Open Redirection Mitigation

Related Content

Test access sourcing from float

Can a floating IP be the next hop for routing?

Floating IPs on new traffic group members

LTM: Pool members using self/floating IPs of default gateway network..?

SOCKS Proxy Config, floating or non-floating interface?