Forum Discussion
Daniel_Ao_10370
Nimbostratus
NimbostratusNAT problem in BIGIP platform
I have configured two self-ip in my LTM device. Both two IPs are private IPs (Please see the network diagram. I have created a network virtual server (destination: 0.0.0.0/0.0.0.0) and enable SNAT (10.0.0.0/24 and 192.168.2.0/30 will be translated to 2.2.2.100 ) so that the back-end servers with IP 10.0.0.x and 192.168.2.0/30 can access the Internet using public IP 2.2.2.100. My question is how to access the Internet for my LTM device. I am setting a NTP server and DNS server in LTM device and found that my LTM device cannot reach the Internet. It seems SNAT only works for the backend servers.
2 Replies
hoolioCirrostratus
Hi Daniel,
If you want LTM originated traffic to be routed, you'd need to add a route using 'b route' or the GUI's Network >> Routes section. If you want LTM originated traffic to be routed through the management port, you'd need to add a management route using 'b mgmt route'.
See SOL3669 for details:
SOL3669: Overview of management interface routing
https://support.f5.com/kb/en-us/solutions/public/3000/600/sol3669.html
Aaron
Daniel_Ao_10370I have added the default route to 192.168.2.1 in my LTM device. But my problem is:
1. 10.0.0.1 can be translated to 2.2.2.100 when accessing the Internet.
2. 192.168.2.2 (LTM self-ip) CANNOT be translated to 2.2.2.100 when accessing the Internet.
cause 192.168.2.2 cannot be translated to public ip, 192.168.2.2 cannot reach the Internet.
