Forum Discussion
Daniel_Ao_10370
Nimbostratus
NimbostratusNAT problem in BIGIP platform
I have configured two self-ip in my LTM device. Both two IPs are private IPs (Please see the network diagram. I have created a network virtual server (destination: 0.0.0.0/0.0.0.0) and enable SNAT (10.0.0.0/24 and 192.168.2.0/30 will be translated to 2.2.2.100 ) so that the back-end servers with IP 10.0.0.x and 192.168.2.0/30 can access the Internet using public IP 2.2.2.100. My question is how to access the Internet for my LTM device. I am setting a NTP server and DNS server in LTM device and found that my LTM device cannot reach the Internet. It seems SNAT only works for the backend servers.
hoolioCirrostratus
Hi Daniel,
If you want LTM originated traffic to be routed, you'd need to add a route using 'b route' or the GUI's Network >> Routes section. If you want LTM originated traffic to be routed through the management port, you'd need to add a management route using 'b mgmt route'.
See SOL3669 for details:
SOL3669: Overview of management interface routing
https://support.f5.com/kb/en-us/solutions/public/3000/600/sol3669.html
Aaron
Daniel_Ao_10370I have added the default route to 192.168.2.1 in my LTM device. But my problem is:
1. 10.0.0.1 can be translated to 2.2.2.100 when accessing the Internet.
2. 192.168.2.2 (LTM self-ip) CANNOT be translated to 2.2.2.100 when accessing the Internet.
cause 192.168.2.2 cannot be translated to public ip, 192.168.2.2 cannot reach the Internet.