SNAT vs Automap

Question

Could you please explain in easy to understand manner the difference between SNAT and Auto-map with examples? Also, how to decide which one to use?

cjunior · Answer

Hi,As far as I know, using automap is the same as using a SNAT pool with the floatt IP from BIG-IP (or self when float are not set).The automap option tells to BIG-IP to decide what source IP to use to reach the destination on network.With SNAT pool, you tell to BIG-IP what source IP list to use to reach destination on network.Since a IP origin have a port limit (~60k) to use, you set a SNAT pool with two and more to avoid that port exhaustion.How to decide to use it?My understand, think about port exhaustion or when need to use an source IP that differs from float IP.For sure, SNAT is a BIG-IP address on behalf of client origin address. It's useful and needed to ensure that response traffic is returned through the BIG-IP when servers and/or routers don't have route back to BIG-IP, so preventing the server from responding directly to the client&nbsp;See a complete doc:https://support.f5.com/csp/article/K7820&nbsp;I hope it helps.

Forum Discussion

SNAT vs Automap

Recent Discussions

F5 looses the token for the first call

ports are showing open on online scanning tool

self-directed requests fail because of no certificate

Decode ObjectSID from Base64-encode string

iRule - Url rewrite and header replace and pool selection not working

Related Content

Kill SNAT AutoMap!

How to ensure source address and source port are accepted and traversed properly via F5 SNAT automap

SNAT Automap

SNAT IP address logging

SNAT pool persistence

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS