Type11_8030
Jun 08, 2011Nimbostratus
Changing SNAT IP based on client destination IP and resulting alarms
With some help from this forum I have an irule that works to route outgoing (initiating from server behind BigIP) traffic to clients via different SNAT IPs based on the destination it is going to. We need this as the clients will only allow connections from a certain IP and it depends based on the network subnets it is going to.
To do this we made a virtual server with the iRule attached and no members to the server. This works fine and sends to the right place from the server pool when it initiates connections.
However these LBs are being monitored and the f5 keeps sending traps saying the virtual server has no members up. there is no monitor on the VS and no pool to have a monitor on so not sure why it is doing this or how to get it to stop
To work around this I tried to just add my main app server pool to the rule and do a ping monitor to stop the SNP trap being sent. This stopped the trap but now the iRule doesn't work on outgoing traffic!
Any help or a better way to do this would be MUCH appreciated.