Snat issue

Question

Hi,
I have faced  an issue in my infrastructure, we have 4 servers running in a pool. i used virtual server ip as snat and it was having an issue, all the hits were served only to 2 servers in the pool, once i moved the snat to automap i began to see  the hits are equally shared to all 4 servers. Not sure what was the cause. 
Note: Roundrobin method i am using.&nbsp;

syed_nazir_1624 · Answer

Hi Dinesh,
This issue can be due to routing issue. Cause of the issue can be that 2 pool members are reachable using  SNAT IP while there is no routing of the other pool members from SNAT IP.

Share the pool member IP address and output of the following command:
route -n

Thanks
   Syed

dinesh3888 · Answer

Hi Syed,

Thanks for your reply.
here are the ouput details,

[root@austltm1:Active:In Sync] config  route -n
Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
10.41.253.8     0.0.0.0         255.255.255.252 U     0      0        0 HA_Vlan_Cross
152.135.149.128 0.0.0.0         255.255.255.128 U     0      0        0 mgmt
152.135.149.128 0.0.0.0         255.255.255.128 U     9      0        0 mgmt
127.1.1.0       0.0.0.0         255.255.255.0   U     0      0        0 tmm0
127.3.0.0       0.0.0.0         255.255.255.0   U     0      0        0 mgmt_bp
152.135.134.0   0.0.0.0         255.255.255.0   U     0      0        0 External_Aust~1
192.168.0.0     0.0.0.0         255.255.255.0   U     0      0        0 HA_Vlan
127.2.0.0       0.0.0.0         255.255.255.0   U     0      0        0 mgmt.1
127.7.0.0       127.1.1.254     255.255.0.0     UG    0      0        0 tmm0
0.0.0.0         152.135.134.1   0.0.0.0         UG    0      0        0 External_Aust~1
0.0.0.0         152.135.149.254 0.0.0.0         UG    9      0        0 mgmt
[root@austltm1:Active:In Sync] config

Pool Member:
152.135.116.61,152.135.116.62 , 152.135.124.26,152.135.247.96.

Weird Thing is i have ports 443 and 80 running on same pool. in 443 pool i have hits on different 2 servers and for port 80 i get on different 2 servers. in that case the servers could be reachable from Snat ip?

nitass · Answer

in that case the servers could be reachable from Snat ip?&nbsp;

i think so.&nbsp;

Weird Thing is i have ports 443 and 80 running on same pool. in 443 pool i have hits on different 2 servers and for port 80 i get on different 2 servers.&nbsp;

have you checked port 80 and port 443 configurations on the servers? they might have something filtering source ip.&nbsp;

Forum Discussion

Snat issue

3 Replies

Bram - January 2026 Featured Member

F5 Container Ingress Services (CIS) and using k8s traffic policies to send traffic directly to pods

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

rSeries Configuration Backup

Questions on Migrating configs from iSeries to RSeries F5s

AST Configuration help

reading Client SSL Profile details via Ansible

Raise your hand if you'll be at AppWorld 2026

Related Content

SNAT pool persistence

SNAT IP address logging

Selective SNAT

Understanding SNAT

Kill SNAT AutoMap!

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS