Forum Discussion
Pim_van_Pelt_72
Nimbostratus
NimbostratusSNAT between virtuals
I have two virtuals on a v9.0.5 box. Each virtual has a pool with RFC1918 nodes in it. Outbound SNAT maps the RFC1918 space onto the VIP so my pools can only be accessed via it.
10.0.25.0/24 are SMTP servers, via 213.136.12.226:25
10.2.25.0/24 are MX servers, via 213.136.12.234:25
An ICMP echo from 10.2.25.1 to 10.0.25.1 gets SNAT'ed just fine:
10:37:38.638524 213.136.12.234 > 10.0.25.1: icmp: echo request
10:37:38.638538 10.0.25.1 > 213.136.12.234: icmp: echo reply
A telnet from 10.2.25.1 to 10.0.25.1 gets SNAT'ed also:
250 oneida.bit.nl Hello mx1.lb.network.bit.nl [213.136.12.234], pleased to meet you
However, A telnet from 10.2.25.1 to 213.136.12.234 does NOT get SNAT'ed:
250 oneida.bit.nl Hello [10.2.25.1], pleased to meet you
I take it that LSNAT takes precedence over SNAT, but this is not my intended behavior. How can I manipulate things so that intra-VLAN traffic is SNAT'ed before it is loadbalanced ?
Kind regards,
Pim van Pelt / BIT bv
James_ThomsonEmployee
Can you post the relevant portions of your bigip.conf? the snats, the virtuals, any rules, the pools. Thanks.- Unfortunately here on devcentral we are not very well equipped to help you debug through a problem. Please open a case with support so they may review your configuration and determine what needs to be changed or is not working as expected.
Thanks. 
Pim_van_Pelt_72Ok.
(I think it may well turn into a feature request though :-)
