Gbps_31870
Aug 05, 2012Nimbostratus
Application issue with SNAT pool
Hi,
We have one VS configured with a SNAT pool, but server team complain that there is an issue accessing the application.
Giving that everything is working fine when they are accessing the real server directly (GW for the server is the FW).
Looking to tcpdump captured in both sides (client & servers side), we found that client IP is translated to different IPs for each connection during the same session.
I'm going to apply the below iRule so that the testing client IP (10.1.0.2) wouldn't change for each connection. please advise if this iRule is ok to use and it will override the default SNAT pool.
when CLIENT_ACCEPTED {
if {[IP::addr [IP::client_addr] equals 10.1.0.2} {
snat 10.2.0.2
} else {
snat snat-pool
}
}
If it's ok and it works for the testing client IP, is there a way through iRule to translate client IP address to a single IP address from the snat-pool for all connections during the same session.
Thanks in advance and sorry for the long post.
BR,
Abdul