Applies To:

Show Versions Show Versions

Manual Chapter: Using Link Aggregation with Tagged VLANs
Manual Chapter
Table of Contents   |   << Previous Chapter   |   Next Chapter >>

18 
You can use the BIG-IP® system in an aggregated two-interface load balancing topology. Link aggregation is the process of combining multiple links so that the links function as a single link with higher bandwidth. Link aggregation occurs when you create a trunk. A trunk is a combination of two or more interfaces and cables configured as one link.
The examples in this chapter show a trunk that includes two tagged interfaces aggregated together. A tagged interface is an interface that is configured to process traffic for multiple VLANs. A VLAN tag identifies the specific VLAN and allows traffic to be passed through that specific VLAN. In order to cause traffic for multiple VLANs to be passed through a single trunk, you must assign the same trunk to each VLAN.
In the examples, we create a trunk (trunk1) that includes two interfaces, 1.1 and 1.2, and then assign trunk1 as a tagged interface to both VLAN external and VLAN internal. Consequently, inbound and outbound traffic passing between the BIG-IP system and the vendor switch can use either interface. For example, traffic destined for VLAN external can pass through either interface, 1.1 or 1.2.
The examples in this chapter show you how to use link aggregation in two configurations, a two-network configuration and a single-network configuration.
Figure 18.1 shows a two-IP network topology, with one network connected to VLAN external, and a separate network connected to VLAN internal.
Note: This example assumes that you are using the default internal and external VLAN configuration. It also assumes that the self IP addresses on each VLAN are on the same IP networks as the BIG-IP system.
The first task for this implementation is to aggregate the links. To do this, you must create a trunk, assign interfaces to the trunk as members, and then enable Link Aggregation Control Protocol (LACP).
1.
On the Main tab of the navigation pane, expand Network, and click Trunks.
The Trunks screen opens.
2.
On the upper-right corner of the screen, click Create.
The New Trunk screen opens.
Note: If the Create button is unavailable, this indicates that your user role does not grant you permission to create a trunk.
3.
In the Name box, type a name for the trunk, such as trunk1.
4.
For the Interfaces setting, locate the Available box and select an interface.
Note: The lowest-numbered interface is the controlling or reference interface.
7.
For the LACP setting, check the box.
This enables dynamic link aggregation.
8.
Click Finished.
Warning: You should perform this task from the management interface; otherwise you will be disconnected from the BIG-IP system.
1.
On the Main tab of the navigation pane, expand Network, and click VLANs.
The VLAN screen opens.
2.
In the Name column, click the VLAN name internal.
This displays the properties of that VLAN.
3.
For the Interfaces setting, locate the Available box and select the name of the trunk that you created in the previous procedure.
4.
Click the Move button to move the trunk name to the Tagged box.
This assigns the trunk to the VLAN, as a tagged interface.
5.
Click Update.
8.
Click Update.
After you create the network environment for the BIG-IP system, you can create the pool of web servers you want to load balance.
1.
On the Main tab of the navigation pane, expand Local Traffic, and click Pools.
The Pools screen opens.
2.
In the upper-right corner of the screen, click Create.
The New Pool screen opens.
Note: If the Create button is unavailable, this indicates that your user role does not grant you permission to create a pool.
3.
In the Name box, type a name for the pool, such as myweb_pool.
4.
For the New Members setting, add the pool members:
a)
Click the New Address option.
b)
In the Address box, type the IP address of a web server in the pool.
c)
From the Service Port list, select a service.
d)
Click Add.
5.
Click Finished.
1.
On the Main tab of the navigation pane, expand Local Traffic, and click Virtual Servers.
The Virtual Servers screen opens.
2.
In the upper-right corner of the screen, click Create.
The New Virtual Server screen opens.
Note: If the Create button is unavailable, this indicates that your user role does not grant you permission to create a virtual server.
3.
In the Name box, type a name for the virtual server, such as vs_myweb.
4.
In the Destination box, verify that the type of virtual server is Host, and in the Address box, type an IP address for the virtual server. Using the example in Figure 18.1, this address could be 10.0.10.30.
5.
In the Resources area of the screen, locate the Default Pool setting and select the name of the pool you created in the previous section (for example, myweb_pool).
6.
From the Default Persistence Profile setting, select source_addr.
This implements simple persistence, using the default source address affinity profile.
7.
Click Finished.
Figure 18.2 shows a single IP network topology. The one-network topology is identical to the two-network topology in all respects except that in the one-network implementation, VLAN internal and VLAN external are on the same internal network. This requires that the two VLANs be grouped in order to be able to exchange packets directly.
You configure the one-network topology in exactly the same way as the two-network topology (allowing for the fact that the virtual server address will now belong to the same network as the servers), with one additional step: the internal and external VLANs need to be grouped. Therefore, to configure the BIG-IP system for this implementation, you must complete the following tasks:
Before you can create a VLAN group, you must remove the self IP addresses from the individual VLANs. After you create the VLAN group, you create a self IP address for the VLAN group, for routing purposes. The individual VLANs no longer need their own self IP addresses.
Warning: You should perform this task from the management interface; otherwise you will be disconnected from the BIG-IP system.
1.
On the Main tab of the navigation pane, expand Network, and click Self IPs.
The Self IPs screen opens.
2.
Using the IP Address and VLANs columns, locate the self IP addresses for the internal and external VLANs.
4.
Click Delete.
A confirmation screen appears.
Note: If the Delete button is unavailable, this indicates that your user role does not grant you permission to delete a self IP address.
5.
Click Delete again.
Create a VLAN group that includes the internal and external VLANs. Packets received by a VLAN in the VLAN group are copied onto the other VLAN. This allows traffic to pass through the BIG-IP system on the same IP network.
1.
On the Main tab of the navigation pane, expand Network, and click VLANs.
The VLANs screen opens.
2.
From the VLAN Groups menu, choose List.
This opens the VLAN Groups screen.
3.
In the upper-right corner of the screen, click Create.
This opens the New VLAN Group screen.
Note: If the Create button is unavailable, this indicates that your user role does not grant you permission to create a VLAN group.
4.
In the Name box, type the name myvlangroup.
5.
For the VLANs setting, use the Move button to move the internal and external VLAN names from the Available box to the Members box.
6.
Click Finished.
After you have created the VLAN group, create a self IP address for the VLAN group. The self IP address for the VLAN group provides a route for packets destined for the network. With the BIG-IP system, the path to an IP network is a VLAN. However, with the VLAN group feature used in this example, the path to the IP network 10.0.0.0 is actually through more than one VLAN. Since IP routers are designed to have only one physical route to a network, a routing conflict can occur. The self IP address feature on the BIG-IP system allows you to resolve the routing conflict by putting a self IP address on the VLAN group.
1.
On the Main tab of the navigation pane, expand Network, and click Self IPs.
The Self IPs screen opens.
Note: If the Create button is unavailable, this indicates that your user role does not grant you permission to create a self IP address.
3.
In the IP Address box, type a self IP address for the VLAN group.
4.
In the Netmask box, type a netmask for the self IP address.
5.
For the VLAN setting, select the name myvlangroup from the list.
6.
Click Finished.
Table of Contents   |   << Previous Chapter   |   Next Chapter >>

Was this resource helpful in solving your issue?




NOTE: Please do not provide personal information.



Incorrect answer. Please try again: Please enter the words to the right: Please enter the numbers you hear:

Additional Comments (optional)