Question on SNAT

can you give an example?

Nitass

I have SNAT A cofigured for VIP A , there is only one SNAT IP which is configured to accept requests from all addresses

This SNAT A is assgined to VIP A

Simlarly i have SNAT B for VIP B which another SNAT IP which is configured to accept requests from all addresses

and SNAT B assigned to VIP B

will this call any issues since i have sent the Origin as all address for both the SNATS

I have SNAT A cofigured for VIP A , there is only one SNAT IP which is configured to accept requests from all addresses

what is SNAT A? is it snat list or snatpool?

if it is snat list, i do not think you can create 2 snat lists with same origin.

root@(ve11c)(cfg-sync In Sync)(Active)(/Common)(tmos) create ltm snat test1 origins replace-all-with { 0.0.0.0/0 } translation 1.1.1.1
root@(ve11c)(cfg-sync In Sync)(Active)(/Common)(tmos) create ltm snat test2 origins replace-all-with { 0.0.0.0/0 } translation 2.2.2.2
01070322:3: Snat origin and mask 0.0.0.0 and 0.0.0.0 already enabled on same VLAN by Snat /Common/test1

if it is snatpool, snatpool will be only used when traffic matches virtual server.

nitass

I do not think it is a SNAT Pool it should be a SNAT List since there is only one IP

In this case what are my options

I do not think it is a SNAT Pool it should be a SNAT List since there is only one IP

if it is snat list, how can you assign it to virtual server? you mentioned This SNAT A is assgined to VIP A.

can you post the snat lists configuration?

 tmsh list ltm snat (name1)
 tmsh list ltm snat (name2)

I do not think it is a SNAT Pool it should be a SNAT List since there is only one IP

if it is snat list, how can you assign it to virtual server? you mentioned This SNAT A is assgined to VIP A.

can you post the snat lists configuration?

 tmsh list ltm snat (name1)
 tmsh list ltm snat (name2)

Nitass

What is will be the command to check if the the SNAT translations is happening

i tied show sys connections all properties but it is very overwhelming

is there a way to filter it and check?

is there a way to filter it and check?

have you tried cs- and ss- command properties?

root@(ve11c)(cfg-sync In Sync)(Active)(/Common)(tmos) show sys connection ?
Options:
  all-properties  Display all properties for the specified items
  default         Units are determined based on current values
  exa             All values are displayed in exa-units
  gig             All values are displayed in giga-units
  kil             All values are displayed in kilo-units
  meg             All values are displayed in mega-units
  peta            All values are displayed in peta-units
  raw             No conversions are made to any values
  save-to-file    Output from the command is saved to the specified file. This file is placed in /shared. This allows to write a file larger than 2GB.
  tera            All values are displayed in tera-units
  yotta           All values are displayed in yotta-units
  zetta           All values are displayed in zetta-units
  |               Route command output to a filter
Properties:
  "{"             Optional delimiter
  age             Specifies the age, in seconds, of a connection
  connection-id
  cs-client-addr  Specifies the clientside remote address of the active connections
  cs-client-port  Specifies the clientside remote port of the active connections
  cs-server-addr  Specifies the clientside local address of the active connections
  cs-server-port  Specifies the clientside local port of the active connections
  protocol        Specifies the protocol used for specified connections (for example: tcp, udp)
  ss-client-addr  Specifies the serverside local address of the active connections
  ss-client-port  Specifies the serverside local port of the active connections
  ss-server-addr  Specifies the serverside remote address of the active connections
  ss-server-port  Specifies the serverside remote port of the active connections
  type            Specifies the connnection type used for specified connections (for example: any, mirror, self)

Thanks Nitass

appreciate allthe help