Forum Discussion

Nimbostratus

Feb 27, 2012

changing outgiong SNAT based on Requesting IP

Right now I have the following: Any UDP 500 requests get snatted to let say 10.10.12.1 (public ip) so any UDP 500 traffic goes out as an IP i want the request to come back on. ...

Altostratus

Feb 27, 2012

Hoolio answered a similar post on iRules and SNAT'ing, perhaps it will get you going in the right direction:

https://devcentral.f5.com/Community/GroupDetails/tabid/1082223/asg/50/aft/61990/showtab/groupforums/Default.aspx

when CLIENT_ACCEPTED {

Check if client is in 192.168.1.0/24 subnet

if {[IP::addr [IP::client_addr] equals 192.168.1.0/24]}{

Use the snatpool

snatpool snatpool_11.11.11.1

}

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

changing outgiong SNAT based on Requesting IP

Recent Discussions

MAC address of deleted VS IP address still responsive

Different common name ssl acces 403 forbiddent

dynamic signature detection

DNS HM Probe issue

F5 looses the token for the first call

Related Content

iRules variables in BIG-IP Next: behavior change

Logging DNS Requests

Change admin account

Distributed caching of authentication requests with NGINX Ingress Controller

How can I redirect an HTTP request to a Proxy and change the Destination?

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS