Forum Discussion

Nimbostratus

Jun 04, 2008

SNAT Based on Source and Destination

I hope you can help ... thanks. I am trying to apply conditional SNAT based on source and destination for any service otherwise leave them alone and allow the static NAT to take effect....

Cirrostratus

Jun 05, 2008

I was suggesting to delete the NAT as a way to test if it's being used for the outbound connection instead of the wildcard VIP. To replace the NAT functionality (at least the inbound portion) can you remove the NAT for one server, add a new VIP on the NAT address on port 0 pointing to a pool containing the server also on port 0? You can then retest the outbound connection from the server through the wildcard VIP with the iRule without the NAT impacting the traffic flow.

Else, maybe a support case would allow you to get someone to look over your exact configuration and provide a more detailed response?

Aaron

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

SNAT Based on Source and Destination

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

How to configure ssh access by key on F5OS

F5 BIG-IP DNS/Audit Logs — Structured Format for SIEM Ingestion

Bot Defense causing a lot of false positives

Recommendation for Adv. Lab

iRules for recreation: HTTP Protocol Parser implemented using BIG-IP iRule(unfinished)

Related Content

Block destination IP by source IP

SNAT based on source and destination

Restsh is now available under an Open Source license!

Destination Based Routing

Destination address at F5

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS