Forum Discussion
MM_F_147944
Nimbostratus
NimbostratusNo External Vlan only Internal Vlan, do i need SNAT
In our Network we have F5 Load balancer which is Load balancing the Application, our client access the application internally and externally but we have Firewall which NAT the External Users IP, So do we need SNAT.
1 Reply
tatmotivCirrostratus
It depends on your network setup. If you do not have your balanced servers route their return traffic to your BigIp (for example by using one of its floating IPs as default gateway), you will probably need SNAT, because otherwise they will try to answer directly to the client IP (or NAT IP of the firewall) and the firewall will drop the packets because they do not match the original connection (SYN: Client to LB / SYN ACK: server to client).
