Forum Discussion
NimbostratusNAT not working after HF7 installation
Hello to all,
I have a pair of F5s in active/standby configuration, running 11.4.1 version. I performed an upgrade from HF5 I was running to HF7 recently announced. LTM and GTM seem to work OK upo to now, except a problem I'm having with NAT.
I have created a NAT like:
ltm nat /Common/Customer01 { inherited-traffic-group true originating-address 1.1.1.1 traffic-group /Common/traffic-group-1 translation-address 2.2.2.2 }
Before the HF upgrade, it was working fine. Afterwards, I cannot establish any communication and from a simple tcpdump, I can see that traffic is translated to the generic Virtual Server I'm having for outbound connectivity and not to 2.2.2.2 which is supposed to.
Could it be HF related? How can I debug it further?
Kind regards, Nick Vidiadakis
2 Replies
I'm more surprised that it was working before because the way I understand it, based on this article, if the packet gets caught in a virtual server with SNAT, that takes precedence. Could something else have changed?
https://support.f5.com/kb/en-us/solutions/public/9000/000/sol9039.html
https://support.f5.com/kb/en-us/solutions/public/9000/000/sol9038.html
N_Vidiadakis_13There was no virtual server matching this traffic, so precedence wasn't an issue. And if it was, shouldn't I have the same problem before the upgrade?
Configuration-wise, nothing was changed. I just activated the new boot location, I selected to copy the configuration from the old boot location and booted to the new environment with HF7.
After some digging, I created a Forwarding Virtual Server for the translated address I want (in our example, 2.2.2.2) and since then, it is working properly. But still don't understand why.
