Forum Discussion
NimbostratusLTM/AFM design when migrating from traditional FW platform
Hi,
I'm new to F5 and I'm supposed to be migrating an existing FWSM/ACE configuration to F5 LTM/AFM. I'm currently learning the ropes using a VE appliance and I'm wondering if someone can offer some guidance or tips on replicating a NAT/ACL environment on LTM with AFM.
Is it possible to create NATs and allow inbound traffic (from low security zone like the internet) without using virtual-servers? Or does everything that needs inbound connectivity require a virtual-server?
Thanks
3 Replies
What_Lies_Bene1Cirrostratus
You can use NATs and SNATs for that purpose yes.
You could also create wildcard Virtual Servers and use rules against those.
- What_Lies_Bene1
Sorry for the delay, can you provide some examples of what you are trying to achieve please?
Right now I'm rather stuck!
- branfarm_139474
I actually started a new thread to address some of the specific NAT issues I'm facing: https://devcentral.f5.com/questions/snat-and-nat-on-difference-vlans
