Views:

Configure and deploy F5 BIG-IP LTM as your load balancer to support using multiple Internet Access on-premises gateways as the authentication proxy for single sign-on.

Note
Note
  • The screens and instructions are valid as of July 17. 2024 using F5 BIG-IP LTM version 17.1.1.
  • The instructions describe a single-NIC deployment.

Procedure

  1. Create a pool.
    1. Go to Local TrafficPoolsPool ListNew Pool....
      f5_Big-IP_New_Pool=GUID-882a2eaa-cb9d-4ba2-a946-d9e62b7569ce.jpg
    2. Specify a name for the new pool.
    3. Choose tcp from available health monitors and move it to Active.
    4. Choose your preferred load balancing method or keep the default setting.
    5. In New Members, add the IP address and port or FQDN and port of the Services Gateways with the Internet Access on-premises gateway installed that you wish to use as the authentication proxy.
    6. Click Finished.
  2. Create a virtual server.
    1. Go to Local TrafficVirtual ServersVirtual Server List.
    2. Click Create and input the following values into the fields.
      Field
      Value
      Name The name of the server
      Destination Address/Mask BIG-IP VE IP address
      Service Port The listening port on in the load balancer to be used as the authentication proxy.
      Protocol TCP
      Protocol Profile (Client) TCP
      Protocol Profile (Server) The current client profile
      Source Address Translation Auto Map
      Default Pool The newly created pool
      Default Persistence Profile The persistence profile, for example source_addr
    3. Click Finished.