Forum Discussion

Nimbostratus

May 01, 2014

SNAT and NAT on difference vlans

Hi, I have a few questions about SNATs and NAT's and trying to get traffic to either SNAT or NAT based on the destination. Here's the diagram: I want traffic from 10.8.4.26 destined to 10....

Noctilucent

May 02, 2014

Would you create one virtual-server as a catch-all, and then one virtual-server that used an irule that attempted to match on a number of different data groups? Each data group would contain the destination prefixes for each NAT? Or would everything have to be done in one virtual-server?

we cannot have multiple virtual servers with the same destination and source. in that case, we can use one wildcard virtual server and use irule to selectively snat.

branfarm_139474
Nimbostratus
May 02, 2014
Would this be the right irule for the outbound snat portion? when CLIENT_ACCEPTED { if {[class match [IP::local_addr] equals pubdmz_prefixes] } { snatpool snat-pubdmz-10.8.6.26 } elseif {[class match [IP::local_addr] equals dmz_prefixes] } { snatpool snat-dmz-10.8.5.26 } elseif {[class match [IP::local_addr] equals partner_prefixes] } { snatpool snat-partner-10.8.7.26 } else { snatpool snat-external-10.8.8.22 } }

Forum Discussion

SNAT and NAT on difference vlans

Recent Discussions

mejores practicas para actualizacion de firmas de ataques?

I cannot activate the license on BIG-IP-NEXT

F5 TCP Health Monitor Send/Receive strings

Relation between Cipher-Suite and Key-type of server certificate

F5OS share APM VPN licence across tenant clusters

Related Content

SNAT IP address logging

2 internal server vlans

Disable Inter-VLAN Routing?

VLAN Group and Asymmetric Deployment

Using 2 Floating IP in the same VLAN for 2 different F5 HA Pairs