Forum Discussion
Terran_99186
Nimbostratus
NimbostratusF5 and DNS reverse resolution of mail server
Hello Admins,
I have some problem with F5 Link Controller and my mail server.
When I config SNAT for the mail server to resolve the DNS reverse resolution, it seems doesn't work. The server always used the automap.
I have 2 internet connection but the mail only use one of them.
MAIL In: 10.10.10.10
MAIL Out: 20.20.20.20
vs {
name "VS_CNC_Mail_SMTP"
address 20.20.20.20:25 // smtp
}
vs {
name "VS_CNC_Mail_HTTP"
address 20.20.20.20:80 // http
}
pool Pool_Mail_HTTP {
monitor all http
member 10.10.10.10:http
}
pool Pool_Mail_SMTP {
monitor all tcp
member 10.10.10.10:smtp
}
snat SNAT_Mail {
translation 20.20.20.20
origin 10.10.10.10
}
virtual VS_CNC_Mail_HTTP {
destination 20.20.20.20:http
ip protocol tcp
pool Pool_Mail_HTTP
}
virtual VS_CNC_Mail_SMTP {
destination 20.20.20.20:smtp
ip protocol tcp
pool Pool_Mail_SMTP
}
virtual VS_Outbound_Any {
destination any:any
snat automap
persist dest_addr
pool Default_Gateway_Pool
}
A simple iRule does not work too.
when CLIENT_ACCEPTED {
if { [IP::addr [IP::client_addr] equals 10.10.10.10] }{
snat 20.20.20.20
}
}
I am a newcomer of F5. Anybody can help me?
Thanks
mycisco_65288snat SNAT_Mail {
translation 20.20.20.20
origin 10.10.10.10
}
Your translation ip equal your vip. so...you look it like automap...
I am chinese. qq 133540 .
Terran_99186Thanks. I put the iRule in VS_OUT_ANY. It's OK now. The VS_OUT_ANY has high priority than SNAT.