Forum Discussion
Eric_Sanchez_27
Nimbostratus
NimbostratusClarification of SelectiveSnat/iRule SNAT. Need help.
Im trying to understand what the difference is between using SNAT AUTOMAP and what I call an iRule SNAT. This is what I am attempting to accomplish: If I have two different VS (that need to talk to ...
The_BhattmanNimbostratus
NimbostratusHi Eric,
You were told correctly that you since the client and server are on the same segment you need to use SNAT so that you have a return route going back to the same interface on the LTM. (symmetric). Now you can use SNAT Automap or your custom snatpool on the VIP. The disadvantage, besides losing the source address, is that it applies to all ip addresses. With the iRule you can control which source IP address is SNAT'd and which one's aren't. In your iRule you have it for specific clients. If you use Automap then it automatically uses the self-ip interface. You can however, use SNAT pool which can contain a single or a pool of specific ip address to SNAT other then self-ip.
I hope this helps
Bhattman
