Outbound SNAT for servers: Destination Net Prohibited
Hi,
Probably something simple ...
I am trying to set up outbound connections for servers behind my F5 LTM. My assumption was that an outbound SNAT (using auto map)as per the configuration guides would accomplish this. Unfortunately not.
When I do a test ping I get the message back from the Big IP: Destiantion Net Prohibited:
When I configure a static NAT for a particular server everything is fine.
The configuration guide does not mention any additional configuration required for this outbound snat scenario.
I believe that NAT or SNAT should be sufficient to allow traffic through the LTM. For NAT this is the case.
In the end I have created a "Forwarding IP" Virtual server for all source IPs and I have bound that to my internal interface. The Virtual server is suing "auto map" as well for source IP address translation.
I would prefer to use the outbound SNAT and not the Virtual server. If someone could help identify the issue, I would appreciate it.
Many thanks,