IPSEC VPN through F5
Hello Folks,
Trying to set up routed base IPSEC VPN between F5 and 3rd party(Cisco) device. Was going through document https://support.f5.com/kb/en-us/products/big-ip_ltm/manuals/product/tmos-implementations-11-6-0/18.html. have below concerns.
1)L3 Forwarding Virtual Server -> is it required and what should be set at the Destination address ? - is it really a 0.0.0.0 ? Will this affect our production traffic ? 2)What are the kind of configurations available when creating such tunnel in cluster mode ? How do we specify this IPSEC tunnel to be in the floating traffic group ? So that the configuration will be synced to the standby. Can the standby also establish its individual tunnel to the remote peer ? 3)For the IPSEC tunnel IP, should we specify using its floating self-IP or its static self-IP ?
In the Local Address field, type the IP address of the BIG-IP system. 4)Any manual intervention required to bring up the tunnel when the unit is failover to standby ?
Regards, Anoop