Forum Discussion

Nimbostratus

Aug 13, 2024

Self-IP & SNAT

We are in the process of replacing our F5's with new ones. One question that came up was self-ip vs SNAT. Can we not use self-ip and use only snat pool for the pool members and can the VIP and pool ...

topology

Paulius

MVP

Aug 14, 2024

When using SNAT I always recommend using a SNAT Pool that uses the virtual server IP so you have a way of tracking what SNAT connections go where and you don't run the risk of exhausting the self-IP ephemeral ports that are used for things such as health monitors because with automap uses the self-IP closer to the destination pool member. You can absolutely use a SNAT IP that exists within the same subnet as the pool members as long as the F5 has a self-IP within that subnet.

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Self-IP & SNAT

Security Best Practices for F5 Products

F5 AppWorld 2026 Registration - early bird pricing.

Kostas Injeyan - October 2025 Featured Member

Recent Discussions

HA Failover between two Datacenters

LTM issue Openning new web browser tab

F5 asm/awaf

AST Configuration Assistance

Identify which virtual servers are using a specific SSL certificate

Related Content

About Self IP, and Virtual IP

Copy over self IPs from several partitions

Ps Self Ip Port Lockdown

SNAT pool persistence

New Virtual Server Pool, Self IP and routing configuration

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS