Does anyone know why a NAT can't share a public IP address with a VS?

Question

I've read and heard this is is not allowed but, it is possible to save such a config and I haven't seen any problems with the servers that I have done it on.
The reason I have used it is: we need some mail servers to have the same public IP outbound and inbound. &nbsp;
However, our WAN connection is in a separate partition/route domain from our VS'. It seems that a SNAT simply won't work across route domains for some reason so I used a NAT temporarily. &nbsp;

nathe · Answer

I think that is a viable solution to have a NAT address and VIP address the same. Note that inbound traffic will prefer the VIP (see Order of Preference&nbsp;
A NAT is an inbound and outbound listener. A SNAT is an outbound listener and can't receive traffic on the translation address, hence why it's called Secure NAT. &nbsp;
Hope this makes sense. &nbsp;
N&nbsp;

Forum Discussion

Does anyone know why a NAT can't share a public IP address with a VS?

Recent Discussions

Oracle JDBC SSL Termination failing on F5

APM for banner and cert

An Irule for Client Ssl Profile that Allows Unassigned TLS Extension Values (17516)

How to Renew F5 Device Certificate

How to export a list of paired external service providers from APM?

Related Content

Public IP address display

Enriching AFM with public domain Threat Intelligence

Learn How to Apply F5 Distributed Cloud WAAP with GKE via a Public GCP IP Address

F5 High Availability - Public Cloud Guidance

SSLO in public cloud: Azure inbound L3 use case

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS