SSL VPN Lease Pool

Question

Hi All, &nbsp;
We are creating SSL VPN on F5 box , Would like to confirm about a VPN Lease Pool (from which IPs will be assign to remote VPN user). For Eg : Lease pool is 10.0.1.0/24&nbsp;
DHCP assignment we are aware that has to be configure on F5 box but is there any Gateway require to be configure for Lease pool IP 10.0.1.0/24 either on F5 or other Network device.&nbsp;
Regards&nbsp;

raghavendrasy · Answer

You need to configure on F5.&nbsp;
For example:&nbsp;
For destination 10.2.0.0/16 (lease pool) gateway will be your network device (Switch/Router) HSRP IP&nbsp;

fallout1984 · Answer

Actually, since the VPN lease pool is local to the F5 (ie. only used between the F5 and the VPN client) and uses the most appropriate self IP as a PAT to communicate outside of it, no gateway's required. This is how our VPN is configured and we have 1700+ connections going through it. Originally self IPs were configured for the lease pool network, but we were later told those were unnecessary. No doubt there are other ways to configure the VPN, but this is how we're doing it.

Forum Discussion

SSL VPN Lease Pool

2 Replies

Recent Discussions

Provisioning r2600 equipment

Block CBC

active/active Support Declarative Onboarding

Error while running ansible

URL

Related Content

have ssl and non ssl pools (or pool members) for a VS

2 way ssl facing pool member

SSL Proxy

SNMP Pools

mixed ssl / non ssl pools