Forum Discussion

Nimbostratus

Mar 15, 2011

Reverse NAT on a 3900

I'd like to know if it is possible to put 1000+ clients behind a 3900 on private addresses and allow them to make outbound connections using a public IP on the 3900 (reverse NAT/outbound NAT). ...

Cirrostratus

Mar 15, 2011

Hi Jeff,

Welcome to the F5 world :)

You can use a 0.0.0.0:0 all protocol virtual server (forwarding if you want to use the routing table or performance layer 4 with a fastL4 profile if you have multiple gateways you want to load balance between) enabled just on the VLAN the clients are on with SNAT enabled. LTM will then accept any connection in on that ingress VLAN and route the traffic out with source address translation. You might want to use a SNAT pool if you have a lot of active connections. This will help avoid port exhaustion.

If this sounds right and you want details on how to configure this let us know.

Aaron

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Reverse NAT on a 3900

AppWorld Berlin iRules Contest!

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

Recent Discussions

VIP control across data centers - how to ensure only 1 VIP is up at a time?

FQDN Node Configuration

Logical Disk Full to Migrate rSeries

Priority Group Activation is not working

Changes to DO and AS3 GitHub - no longer monitored

Related Content

Update an ASM Policy Template via REST-API - the reverse engineering way

BIG-IP AFM設定例-NAT

Re: F5 BIG-IP SSL Orchestrator and Reversing Labs Integration Guide

Troubleshooting Lync/Skype for Business Reverse Proxy

F5 Reverse Proxy setup

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS