Forum Discussion

Nimbostratus

Jul 26, 2012

SNAT

Hi, I am new to irules and I have an issue with one of my customers where they require a SNAT enabled to route traffic correctly but they dont want the IP address to be that of the F5 self IP addres...

Historic F5 Account

Jul 26, 2012

If it traffic is sourced from the client's IP then the f5 in not SNATing the connection. That would be routed mode for the f5. Now if you need the IP address of the client for the logs. You can use SNAT and then use the x-fowarded header in the HTTP profile to show the server what the true IP address is. If this will not work you can use the TCP options field

https://devcentral.f5.com/Tutorials/TechTips/tabid/63/articleType/ArticleView/articleId/1086447/Accessing-TCP-Options-from-iRules.aspx

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

SNAT

Recent Discussions

iRule to Change Default Pool (not redirect to another pool)?

What is the best practice for migrating from iseries to rseries?

iRule to Force Source IP to Specific Backend Node

checking the fan status on the device.

what is this serial number b1:e5:bd:8f:2x:58:xx:27 in device certificate?

Related Content

SNAT IP address logging

SNAT pool persistence

Understanding SNAT

F5 SMTP Fast Template - SNAT Not working as expected

SSL Orchestrator Advanced Use Cases: Outbound SNAT Persistence

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS