Forum Discussion
smp_86112
Jun 14, 2011Cirrostratus
SNAT Automap, INET Port Exhaustion, and Self-IPs
We have a number of heavily used VIPs which use the SNAT Automap feature. And every once in a while the LTM outputs this log entry:
01010201:2: Inet port exhaustion on (floating_...
hoolio
Jun 14, 2011Cirrostratus
Hi SMP,
On a unit in a redundant pair, the static (non-floating) self IPs cannot be used to source traffic. If you want to avoid the inet port exhaustion, you can add more floating self IPs or configure a SNAT pool per virtual server. The latter would help if you use the same pool member IP:ports on multiple virtual servers that you have SNAT automap enabled for.
With multiple SNAT addresses TMM will round robin through them. This can cause problems with apps that track the source IP address over a session. If you need to ensure the source IP stays the same across multiple connections, you can use an iRule like these to do so:
http://devcentral.f5.com/wiki/default.aspx/iRules/snat_pool_persistence.html
http://devcentral.f5.com/wiki/default.aspx/iRules/Exchange2010_SNATPool_Persist.html
Aaron
Recent Discussions
Related Content
DevCentral Quicklinks
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com
Discover DevCentral Connects