Forum Discussion

Cirrus

Jun 22, 2018

SNAT local address going to a specific port

I'm trying to SNAT a subnet going to a specific port but not getting anywhere with the iRule. Below is what I currently have:

when CLIENT_ACCEPTED { if {[IP::addr [IP::client_addr] equals "10.10.10.0/28"]} and {[UDP::local_port] equals "1700"]} {snat "10.10.10.1"}}

Ret. Employee

Braces and brackets are a bit misaligned. Try the following which should at least be syntactically correct:

when CLIENT_ACCEPTED {
    if { [IP::addr [IP::client_addr] equals "10.10.10.0/28"] && [UDP::local_port] equals "1700" } {
        snat "10.10.10.1"
    }
}

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

SNAT local address going to a specific port

Recent Discussions

Can you set Kerberos AAA server via session variable?

HTML Code injection Not detected by ASM

What will be happen to live and existing connections when failover HA BIG IP active-standby

SSL Offload and remove FQDN

High CPU utilization (100%).

Related Content

CSV to Address External Datagroup File

Is it possible to block a specific log with words in local log?

Deploy the NGINX Modern Apps Reference Architecture locally

Ipv6 address

check the utilization on specific node

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS