Virtual Service routing traffic from DMZ to internal isn't working





Setup virtual service from DMZ to internal and it isn't working as expected


Added a NIC to the dmz and setup a service to test to make sure it is working. Client is able to get the ESP Logon but it doesn't seem to be connecting to the backend server.

Cause: Having a virtual service and real server on 2 different directly connected networks causes asymmetric routing issues on the backend.

Enable Subnet Originating Request within the Virtual Service > Standard Options.

This resolves the asymmetric routing issue by changing the source IP that is sent to the real server to be that of the LoadMaster interface facing the real server, as opposed to the Virtual Service IP address, which the LoadMaster uses by default.


