Forum Discussion

Cirrostratus

Mar 07, 2015

To which VLAN object belongs

Hi, I am curious how VLAN object relation is working, specifically how VLAN/object inheritance is working for Auto Last Hop (ALH) setting. According to docs VIP, SNAT/NAT objects are inheriting ...

Nacreous

Mar 09, 2015

Hi Piotr,

it does not matter where a virtual address (used by virtual server or NAT) is located.

It can be a virtual address space on the BIG-IP to be reached via a self IP (used as next hop).

All these addresses don´t need to belong to locally attached networks and it is not necessary to define "loopback" interfaces for them.

As long as you do not disable the Auto Last Hop functionality, the inbound VLAN and MAC address where the initiating packet came from, will be stored in the connection table. The connection table dump with the "

all-properties

" option will show this information as well for NAT and SNAT configurations ("

tmsh show sys conn cs-client-addr  all-properties

"). As mentioned in earlier posts I try to avoid the so called Default SNAT configurations and make very little use of NAT configurations. Whenever possible I´m using virtual servers to handle traffic as they provide much more granular control.

Thanks, Stephan

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)