Forum Discussion
NimbostratusNeed to bypass SNAT for internal IPs
I have configured SNAT towards the Public Network for 2 local servers whose GW is the F5 BIG-IP itself.
IPs of servers : 192.168.10.1 & 192.168.10.2 GW : 192.168.10.254/24 (configured on BIG-IP) SNAT IP : 77.240.x.x
Now when the servers 192.168.10.1 & 192.168.10.2 need to communicate to 192.168.20.1 in the local network, it’s taking the NATed IP 77.240.x.x which is blocked through FWs in the network due to restrictions and will cause asymmetrical routing. I need to bypass the SNAT if matched with certain IP networks with an iRULE. Please suggest how and what needs to be done. If anyone have any sample iRULE or document that can help, it will be really helpful.
7 Replies
- nitass
Employee
IPs of servers : 192.168.10.1 & 192.168.10.2
GW : 192.168.10.254/24 (configured on BIG-IP)
SNAT IP : 77.240.x.xhow is snat configured on bigip? are you using snat list?
Now when the servers 192.168.10.1 & 192.168.10.2 need to communicate to 192.168.20.1 in the local network
what object listener are you using? is it virtual server or snat list?
Tabish_Patel_20I configured using the SNAT List- Tabish_Patel_20Yes VS is also configured for inbound connections and its working with no problem.
nitass_89166Noctilucent
IPs of servers : 192.168.10.1 & 192.168.10.2
GW : 192.168.10.254/24 (configured on BIG-IP)
SNAT IP : 77.240.x.xhow is snat configured on bigip? are you using snat list?
Now when the servers 192.168.10.1 & 192.168.10.2 need to communicate to 192.168.20.1 in the local network
what object listener are you using? is it virtual server or snat list?
- Tabish_Patel_20I configured using the SNAT List
- Tabish_Patel_20Yes VS is also configured for inbound connections and its working with no problem.
- Pawan_Goswami
Please use SNAT list for inbound to outbound traffic.
