Forum Discussion
Zac_Quinn
Nimbostratus
NimbostratusNAT Question
Hi folks,
I am in the process of migrating from legacy Cisco CSS appliances to LTM and have a question on NAT'ing.
We have some Citrix presentation servers that sit behind the load balancers which are in transparent mode. These Citrix servers need to make connections to the VIP's for the web services we host so on the CSS appliances we create a group of the Citrix Server IPs and assign it VIP to ensure the responses from the Web services don't go directly to the Citrix servers but back via the load balancer.
How would I do this in LTM?
Thanks in advance
Zac
Brad_ParkerCirrus
On BIG-IP(LTM in your context) you would configure a SNAT on the VIP. The easiest way is to select SNAT Automap.
https://support.f5.com/kb/en-us/solutions/public/7000/800/sol7820.html
Zac_QuinnThanks Brad, I am assuming that SNAT AUTOMAP would NAT all incoming traffic to the VS so original client addresses would be lost to the backend servers. If I use a SNAT Pool and stick the Citrix Servers in it this would allow client IP of all non-citrix connections to pass through yet still allow the Citrix servers to connect? Hope to have my test rig up and running next week so I'll let you know how I get on!
Brad_Parker_139Nacreous
On BIG-IP(LTM in your context) you would configure a SNAT on the VIP. The easiest way is to select SNAT Automap.
https://support.f5.com/kb/en-us/solutions/public/7000/800/sol7820.html
- Zac_QuinnThanks Brad, I am assuming that SNAT AUTOMAP would NAT all incoming traffic to the VS so original client addresses would be lost to the backend servers. If I use a SNAT Pool and stick the Citrix Servers in it this would allow client IP of all non-citrix connections to pass through yet still allow the Citrix servers to connect? Hope to have my test rig up and running next week so I'll let you know how I get on!