Loadbalancing Traffic for Outbound

Question

Hey gus, 
&nbsp;  
&nbsp; I want to know if we could use Ratio method for the outbound traffic with LC. If we can, How to set up and how to define the iRule. 
&nbsp;  
&nbsp; I guess we may define the two links in the default_gateway_pool, and use the ratio method in the pool. 
&nbsp;  
&nbsp; thank you for your help!!!

hoolio · Answer

Hi Monica,  
&nbsp;  
&nbsp; You should be able to do this using default load balancing configuration without an iRule as you've described with a 0.0.0.0/0.0.0.0 network virtual server which references a default gateway pool and ratios set for the two members.  
&nbsp;  
&nbsp; Aaron

monica_74227 · Answer

okay, thank you for your quickl reply.however maybe I need to use irule to do something else, just like the following: 
&nbsp;  
&nbsp; rule iRule_internal_out { 
&nbsp;    when CLIENT_ACCEPTED { 
&nbsp;    if { [matchclass [IP::local_addr] equals $::cnc_class]} { 
&nbsp;       pool cnc_ratio_pool 
&nbsp;     } elseif { [matchclass [IP::local_addr] equals $::ct_class]}  {  
&nbsp;       pool ct_ratio_pool      
&nbsp;     } else { 
&nbsp;       pool cnc_ratio_pool  
&nbsp;     } 
&nbsp; } 
&nbsp; when LB_SELECTED { 
&nbsp;   if { [IP::addr [IP::client_addr] equals 172.16.3.X]  } { 
&nbsp;     switch{IP::addr [LB::server addr]} 
&nbsp;     { 
&nbsp;         221.218.248.145 {snatpool snat_ct_mail} 
&nbsp;         222.35.42.97    {snatpool snat_cnc_mail}     
&nbsp;     
&nbsp;     } 
&nbsp;     } else { 
&nbsp;     snat snat_cnc_default  
&nbsp;     } 
&nbsp; } 
&nbsp; } &nbsp;

hoolio · Answer

Okay, so you have an iRule to select the pool and apply SNAT based on the destination and source IP addresses.  Does it work for your requirements?  If not, can you add logging to the iRule to see what code is being executed? 
&nbsp;  
&nbsp; Aaron

monica_74227 · Answer

hey Aaron, well, that is just my think, i don't know if it could work well. I will set up a test environment to check. 
&nbsp; what is your apionion ?

hoolio · Answer

Which version of software are you running?  The syntax for matchclass has changed slightly in v10 versus v9.  I'll post an example iRule after getting the version. 
&nbsp;  
&nbsp; Thanks, 
&nbsp; Aaron

Forum Discussion

Loadbalancing Traffic for Outbound

10 Replies

F5 Container Ingress Services (CIS) and using k8s traffic policies to send traffic directly to pods

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

Syslog server not visible in GUI

Same LTM Monitor applied to different Pools with Common Nodes

irule execution error

F5 AWAF/ASM learning only from Trusted traffic?

OWA File Upload URIs for WAF Bypass

Related Content

Double Trouble: Multiple Controllers Handling the Same Kubernetes LoadBalancer Service

F5 Container Ingress Services (CIS) and using k8s traffic policies to send traffic directly to pods

Troubleshooting traffic spike on loadbalancer

S3 Traffic Optimization with F5 BIG-IP & NetApp StorageGRID

SSL Orchestrator Advanced Use Cases: Outbound SNAT Persistence

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS