Regarding traffic from node to Internet

Question

Hi Team,&nbsp;
We have an issue where we are trying to access internet from one of node which is behind LTM. Unfortunately this is not working. Below is the diagram of our network&nbsp;
Internet &lt;&lt;-- Firewall &lt;&lt;-- LTM &lt;&lt;--switch &lt;&lt;-- node&nbsp;
We are using LTM as router to direct all default traffic to Firewall so it can be forwarded to internet. But while trying to accomplish this we are seeing LTM dropping traffic. While in wireshark logs I am seeing traffic is natted to its own subnet self ip created on LTM (i.e. backend IP of LTM) and not to front end IP of LTM (which is pointing to firewall). &nbsp;
Please suggest if any changes is reqd? &nbsp;
We have created Forwarding VS and there is static route pointing to firewall.&nbsp;
Thanks.&nbsp;

arpydays · Answer

Hi, if using HA do you have a floating self-ip on the front end network? The F5 will prefer floating IPs over non-floating even if they are not on the egress vlan when using snat auto map. I assume the F5 has the correct default route pointing to the firewall? I would also try using a SNAT pool with an IP from the front end network and see if that works.&nbsp;
cheers&nbsp;

Forum Discussion

Regarding traffic from node to Internet

1 Reply

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

VIP in https that redirect to another vip in https

VIP is not responding on SYN after enabling other modules like ASM, APM and AFM.

Unblock Request WAF

F5OS login with admin/root failed via console

TLS handshake failure from BIG-IP to backend – Fatal Alert: Decode Error (Server SSL)

Related Content

Automating F5 Licensing - without direct internet access

Question & Answer: Regarding CVE-2020-5902

S3 Traffic Optimization with F5 BIG-IP & NetApp StorageGRID

Protect an application exposed on Internet with F5 XC WAAP

Unbreaking the Internet and Converting Protocols

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS