Configuring a SNAT for internal hosts to route to the rest of the external network...

Hi JB,

 

 

There are a few ways you can pass traffic from the internal hosts outbound. You could define a virtual server on port 0 (any) which is enabled only on the internal hosts' VLAN(s). If you want to use the LTM routing table you could set the virtual server type to forwarding. Or if you want to specify one or more gateways, you could use a FastL4 virtual server pointing to a pool of the gateway(s). You'd probably want to enable SNAT on the virtual server to ensure responses come back to LTM. If there is a lot of outbound traffic, you might want to use a SNAT pool with multiple addresses or add multiple floating self IP's on the egress VLAN(s). For info on this you can check SOL2053:

 

 

SOL2053: NAT and SNAT source port usage

 

http://support.f5.com/kb/en-us/solutions/public/2000/000/sol2053.html

 

 

A SNAT automap can support up to 64,510 ports for each self IP that is enabled.

 

 

Or, you could define a SNAT enabled only on the internal hosts' VLAN(s) and avoid a virtual server. Generally a virtual server provides more configuration options and visibility compared with a SNAT.

 

 

Aaron