Forum Discussion
zanoob1
Altostratus
AltostratusF5 virtual server not using static route when SNAT is set to none.
Hi All, I dont know if you came across same issue or not. My goal is to use F5 as the VPN gateway with BIG IP(on client machine) VPN client to connect for the clients. However, the same F5 is us...
Hi there,
Thank you so much for the reply. I am not leaking external srouce IPs into the network. Since it is a VPN connection, the users get a private IP in the tunnel . The Tunnel private IP is used to access the inside network.
I was able to complete it my design and requirment with the KB https://my.f5.com/manage/s/article/K18487629, this actually will use the pool address as default gateway to route traffic . Actually an excellent way to do it.
Regards,
whisperer
MVP
MVPIf these connections are coming from the Internet, you need to use SNAT. Otherwise, you are leaking external source IPs into your network and the return traffic may go via default gateway once the client responds to intial connection. There is no guarantee this return traffic will go back via the same F5 on ingress and you will have async routing.
zanoob1Hi there,
Thank you so much for the reply. I am not leaking external srouce IPs into the network. Since it is a VPN connection, the users get a private IP in the tunnel . The Tunnel private IP is used to access the inside network.
I was able to complete it my design and requirment with the KB https://my.f5.com/manage/s/article/K18487629, this actually will use the pool address as default gateway to route traffic . Actually an excellent way to do it.
Regards,