Hey Steve!
Yes, I did add
/0
to the virtual server. Lets me do that on the GUI, not very clear in tmsh.
ltm virtual vs_rd1 {
destination 0.0.0.0%1:any
mask any
profiles {
fastL4 { }
}
source 0.0.0.0%1/0
source-address-translation {
pool cgnat_pool
type lsn
}
translate-port disabled
vlans {
VLAN_701
}
vlans-enabled
}
ip r
for RD0 and RD1:
[admin@f5CGNAT:/S1-green-P:Eval:Active:Standalone] ~ ip r
192.168.148.116/30 dev VLAN_709 proto kernel scope link src 192.168.148.117
127.1.1.0/24 dev tmm0 proto kernel scope link src 127.1.1.1
127.3.0.0/24 dev mgmt_bp proto kernel scope link src 127.3.0.1
198.82.245.0/24 dev mgmt proto kernel scope link src 198.82.245.112
198.82.245.0/24 dev mgmt scope link src 198.82.245.112 metric 9
127.2.0.0/24 dev mgmt.1 proto kernel scope link src 127.2.0.2
127.7.0.0/16 via 127.1.1.254 dev tmm0
127.20.0.0/16 dev tmm_bp proto kernel scope link src 127.20.1.254
default via 198.82.245.1 dev mgmt metric 9 mtu 1500
[admin@f5CGNAT:/S1-green-P:Eval:Active:Standalone] ~ rdexec 1 ip r
172.14.0.4/30 dev VLAN_701 proto kernel scope link src 172.14.0.5
127.1.1.0/24 dev tmm0 proto kernel scope link src 127.1.1.1
Turned on logging. Pretty much seeing keepalives for neighbor relationships.
I'm using "neighbor x.x.x.x default-originate" instead of "network 0.0.0.0/0", and I can now see the default getting advertised by BGP.
f5CGNAT[1]show ip bgp neighbors 172.14.0.4 advertised-routes
BGP table version is 6, local router ID is 1.1.1.1
Status codes: s suppressed, d damped, h history, * valid, > best, i - internal
Origin codes: i - IGP, e - EGP, ? - incomplete
Network Next Hop Metric LocPrf Weight Path
*> 0.0.0.0/0 172.14.0.5 100 32768 i
*> 172.24.0.0 172.14.0.5 32768 ?
But my question again, the default above is not a virtual server route that references an LSN pool. It was introduced because of "default-originate". How do clients get NAT'd if the are not connecting to the virtual server? "show ip route" shows the default virtual server route. How can I advertise that using BGP.
f5CGNAT[1]show ip route
Codes: K - kernel, C - connected, S - static, R - RIP, B - BGP
O - OSPF, IA - OSPF inter area
N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
E1 - OSPF external type 1, E2 - OSPF external type 2
i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, ia - IS-IS inter area
* - candidate default
Gateway of last resort is 0.0.0.0 to network 0.0.0.0
K* 0.0.0.0/0 is directly connected, tmm0
C 127.0.0.1/32 is directly connected, lo
C 127.1.1.0/24 is directly connected, tmm0
K 172.24.0.0/16 is directly connected, tmm0
C 172.14.0.4/30 is directly connected, VLAN_701
Thanks.