Forum Discussion

Nimbostratus

Sep 12, 2008

Internal to External Flows

Hi, Can anyone confirm how LTM handles flows from internally defined nodes which use the LTM as its gateway. For example a web server that needs to communicate to an NTP ...

config

design

dennypayne

Employee

Sep 12, 2008

Yes, LTM is a default deny device. You either need to SNAT or NAT internal connections to an external IP address, or use a wildcard forwarding virtual server (0.0.0.0:0) to allow the traffic in and out. If any NetBIOS is involved the NAT/SNAT method probably won't work, so I tend to prefer the forwarding virtual method. When using that, the LTM's gateway will likely need a static route to the network behind LTM pointing to the LTM's external address (floating address for redundant pairs).

Denny

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Internal to External Flows

F5 Academies Are Back – And We’re Coming to a City Near You

Introducing the F5 Application Study Tool (AST)

Recent Discussions

Big-Ip Edge Client specials characters problems

Which encyrtion algorithm is used when making Kerberos ticket encyrtion.

iControl for Gtm wideip

About F5 idle timeout and keep-alive

Problem with sending BotDefense logs to remote server

Related Content

Redirecting to an external site when the internal site is down

External and Internal DNS on same appliance

Create isolated environment for internal and external networks

F5 Distributed Cloud Network Firewall Rule Evaluation and Packet Flow

BigIP 5200 traffic flow

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS