Assign a specific subnet address to user for snat.

Question

How to assign a specific subnet address to user for snat, just as following:&nbsp;
when CLIENT_ACCEPTED  
{ if {[class match [IP::client_addr] equals data_group]} {snat 10.1.1.0/24* or 10.1.1.0/255.255.255.0?} else { return} }
I have tried，but there is no package capture or irules hit.&nbsp;

kevin_stewart · Answer

What I assume you're trying to do is assign a full subnet as the set of available SNAT addresses (10.1.1.1 - 10.1.1.254), and if so, you cannot do it this way.
You could probably programmatically expand the subnet values in the iRule, but the more optimal solution would simply be to create a SNAT pool with the desired IPs. You could even script this:
!/bin/bash

tmsh create ltm snatpool snatfoo members add { 10.1.1.1 }
for i in {2..254}; do tmsh modify ltm snatpool snatfoo members add { 10.1.1.$i }; done

Forum Discussion

Assign a specific subnet address to user for snat.

Recent Discussions

I used the wrong email account when take Application Delivery Exam (101)

F5 iControl REST API - viewBy Parameter Issue in Analytics Report

'F5 rules for AWS WAF' ruleset not working for jsp web shell attack

Disable ssl or https for the embed url

did not show checkbox on chrome while access through f5

Related Content

MAC address assignment in F5

Virtual address from address list is down after assignment to VS

Deny access to F5 management from specific addresses

Assign specific uri to a server\node in pool

CSV to Address External Datagroup File

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS