SNAT Based on IP

Hey guys, I have a new snat rule that I could use some help with.

 

 

I have created an internal virtual server that points to an anti-virus console on the external network. The iRule is applied to this internal vip. My servers behind bigip have a local host entry that directs them to the internal vip for AV updates. When the servers connect they should be routed to the appropriate snat pool based on their ip address. If these guys are not routed to these snat pools they end up going through another snat that they are a member of. The reason for this is that my mainframe can only recieve mail from one address but my AV console has to see unique ip's or it will refuse to update the server because it "thinks" it has already been updated. Watching the statistics the rule below never works, however if telnet from the server to the vip it works... I tried the client_accepted action with no luck. What do you guys think?

 

 

 

when SERVER_CONNECTED {

 

if { [IP::addr [IP::client_addr] equals 192.168.10.25] } {

 

use snatpool MMS_World_Secure_SNATpool1

 

} elseif { [IP::addr [IP::client_addr] equals 192.168.10.26] } {

 

use snatpool MMS_World_Secure_SNATpool2

 

}

 

}

 

 

 

 

Thanks!