Forum Discussion
NimbostratusSNAT source address, source port
Hey Folks,
I have a Citrix Gateway deployed behind a BigIP LTM, and I would like to track the connection of a certain user. I can see the source address, source port and the SNAT translation with this command:
conn server 151.x.x.x show all
So, I see that although the address is translated to one of the SNAT addresses in a pool of 7, the source port remains the same, so I can use the port to identify the user. The problem is when I have 8 port matches from 8 different connections. I guess the LTM is forced to change the port... How can I detect when this happens ?
Thanks, Fabian
2 Replies
What_Lies_Bene1Cirrostratus
You can't I'm afraid (without some real advanced shell script-fu anyway). I'd suggest you use an iRule to log as necessary. Let me know if you need help with that.
Dicky_Moe_13167ok. Thanks anyways.
