Forum Discussion
JCMATTOS_41723
Nimbostratus
NimbostratusSNAT Global IP access?
Hi all we have an LTM 9.4x and we would like to attempt a Proof-Of-Concept with the BigIP to test loadbalancing external public IP's. This may seem unusual at first but again this is a POC. We have an internal VIP/80 172.x.x.x/24 that we would like to loadbalance/forward requests to a public website (example: www.F5.com). I was recommended by F5 to use SNAT to get by the Vlan translation issues but still no luck. I have a VIP (172.x.x.x/24) ==> POOL (www.F5.com) along with a SNAT Pool 172.x.x.x /24. I can get to the site from the box itself, but not thru the VIP any ideas or recommendations? I'm new to BigIP not sure where to begin...Please Help!
172.x.x.x/24 VIP (Internal)
/ \
www.F5.com (POOL Member External)
James_ThomsonEmployee
When testing, did you add an entry to your testing machine's host database? You'll want to add a line pointing www.f5.com to 172.x.x.x so that when you type in f5.com, it sends you to the vip. Many websites require a host header to be sent to accept the traffic, so you can't send traffic to an IP address that doesn't match what they expect as a host header.- James_Thomsonmake sure you have assigned the SNAT pool to the Virtual Server. You need to be in the advanced section to see that.
JCMATTOS_41723Thx J, In our DNS we have the name resolution for the VIP www.test.F5.com ==> 172.x.x.x/24 . We do have the SNAT Pool added to the VIP in advanced mode, but still no luck...response code 400!