F5-LTM

Local Traffic Management

Sep-2023
 F5-Information
• F5 company - 1996 USA
• Application Delivery Network (ADN)
• Security & Optimization support APP
• TMOS (Traffic Management Operating System)
 F5-Products
• LTM : Local Traffic Manager
• GTM : Global Traffic Manager ( DNS Server )
• AFM : Advance Firewall Manager ( DDOS Protection )
• ASM : Application security Manager( WAF)
• APM : Access Policy Manager ( Authentication to connect
Server, Radius- SSLVPN-tacacs)
• AAM : Application Access manager ( Cache Server )
• IP intelligent
• BIG-IQ
• Silver line : ( cloud base-WAF,DDOS)
•
 Proxy Type
• Forward Proxy : Reverse Proxy
 Proxy Type
• Full Proxy : Half Proxy
 What is LTM
• LTM : Local Traffic manager

• Node -------> Server

• Pool -------> Service ( IP +Port)
• Virtual Server --- > public/internet IP addresses
 Design F5 Topologhy
• One-armed deployment

• Two-Armed Deployment

• N Path Deployment
Load Balanceing Method
Round Rubin Method
Ratio Method
Least Connection Method
Observed Method
Predictive Method
 Weight least connection Method

Current connection
-------------------------------
Connection limited
%
Active
Node Connection Limit  
connection

A 200 10 5%

B 400 18 4.80%

C 500 20 4%

Next traffic will be reroute to Server C

 Ratio least connection Method

Active connection
-------------------------------
Ratio node
%
Node Active connection Ratio node  

A 20 2 10

B 400 20 20

C 200 15 13

Next traffic will be rerouted to Server A

 Persistence Session

-Source IP address
-Cookie
- Insert Mode
- Rewrite Mode
- Passive mode
 Persistence ( Cookie )
* Insert Mode :
F5 attached to response packet ( Pool name and Pool Member )
F5 Blue-SRV
Date
1. 0 3 .0
CONS OLE = T OP B IG- I P
FA IL OV E R=B OT T OM i 2000
S ERIE S

M GMT A USB
L ST A TUS
AL A RM
L ED 10G
K EY 1G PO W ER 1
1G 2. 0 4 .0 10
G 5 .0 6 .0 PO W ER 2
XX
X-A
BCD-0123V
I PRI O
N XX X- ABC D-01 23

Client A Date

Pool name Res-SRV

A
Poll Member

GRE-SRV

* Rewrite Mode :
Pool member adding cookie Blank packet to response packet and send
to F5 after that F5 inject information (Pool name and Pool member) to
Blank packet and send to client for installing on client web.
Date

.0
1 3 .0
F5 BI G-IP
Blank Blue-SRV
CONSO L E
= T OP
F AIL
O V ER= BOT TOM i2000
SER IES

M GM T A US B
L S TA T US

A LA R M
LE D 10 G
KEY 1G P OWE R 1

1G .0
2 4 .0 10G 5 .0 6 .0 P OW E R 2
XXX
-AB
CD-0123V
I PR
I ON X XX- ABC D-0 12 3

Client A Date

Pool name Res-SRV

A
Poll Member

Blank

GRE-SRV
 Persistence ( Cookie )
*Passive Mode :
Pool member adding cookie packet ( Pool member ) to response
packet and F5 do not
have any update
Date A

F5 Blue-SRV
C ON SOLE =TOP
1.0 3.0
BIG- IP
FA ILOVE R=BO TTO M i2000
S ERI ES

USB
L MGMT A STATUS
ALARM
LED 10G
KEY 1G POWER 1
1G 2.0 4.0 10G 5.0 6.0 POWE R 2
XXX-ABCD-0123VI PRION XXX-ABCD-01 23

Client Date A

Pool name Res-SRV

A
Poll Member

GRE-SRV