For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Robert_Luechte2's avatar
Robert_Luechte2
Icon for Cirrus rankCirrus
Jul 05, 2016

static snat assignment not working as expected

I'm trying to do a static SNAT assignment for a virtual server based on the client's source IP address. I'm using the following iRule to do this: when RULE_INIT { Use a local array to config...
application delivery
iRules
LTM
Vijay_E's avatar
Vijay_E
Icon for Cirrus rankCirrus
Jul 05, 2016

Are the SNAT IPs being used by any other configuration object or may be the iRule is assigned to some other VS ? Can't you utilize 1 pool member in the default pool attached to the VS and then do a tcpdump on the server ? That should be more definitive, assuming you are inserting the client IP in XFF header.

or add a log statement in the iRule just below the snat IP selection:

log local0. "CLIENT IP - [IP::client_addr] - Selected SNAT - $static::snat_ips([expr {[crc32 [IP::client_addr]] % [array size static::snat_ips]}])"