Forum Discussion
Config option for default SNAT translation idle timeout?
SNAT translation addresses by default have an 'indefinite' timeout for TCP, UDP, and IP. This can be set on a per-object basis when the new translation address is configured.
Is it possible to configure a 'global' value to apply to any new SNAT translation? I.e.: Set the TCP idle timeout to xxx seconds for new SNAT translation unless explicitly set otherwise?
I checked through some locations (global settings, DB variables) and didn't see anything that appeared to allow this.
- jkalan_44086Nimbostratus
I second this request. The default value causes connection leaks which can eventually lead to an LTM failure. At least allow users/customers the ability to set reasonable defaults.
- James_ThomsonEmployee
I think since there are multiple types of SNAT's (automap,pool,basic-snat) that there is no single place to configured this default. SNAT automap can't even be changed according to this link https://support.f5.com/kb/en-us/solutions/public/7000/600/sol7606.html
So, I think we're just left with applying a value to the SNAT object as required.
Recent Discussions
Related Content
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com