Forum Discussion
hung_105573
Nimbostratus
NimbostratusTraffic Mail Server
Hi all
I had write irule for traffic outbound mail server
when CLIENT_ACCEPTED {
if { [IP::addr [IP::client_addr] equals 10.0.25.91] } {
snatpool NAT_MAILServer
}
else
{
snatpool Nat_Internet_live
}
}
the Ip address 10.0.25.91 is Mail server behind F5
the Snatpool Nat_MailServer has 3 ip public mx record for mail
the Snatpool Nat_Internet_live for normal traffic mail of client
I had apply this rule under virtual server Mail server outbound
ltm virtual MAIL_SERVER {
description "Mail Server to Internet"
destination 0.0.0.0:smtp
ip-protocol tcp
mask any
pool Default_Gateway_Pool
profiles {
tcp { }
}
rules {
BaseOnSource
}
translate-address disabled
vlans {
Internal
}
vlans-enabled
}
Is this config correct ?
The virtual server mail server inbound
ltm virtual Mail_SMTP_FPT1 {
destination 118.69.222.x:smtp
ip-protocol tcp
mask 255.255.255.255
pool Server_10.0.25.91_25
profiles {
tcp { }
}
snat automap
vlans {
FPT_LL1
}
vlans-enabled
}
Is this config correct ?
The config outbound and inbound traffic for mail then mail server work good ?
Pls help me
thanks all
Ferg_104721For this setup i assume the the F5 your gaetway an the VIP type is forwarding or Performance (Layer 4). Forwarding will forward the request to the destination IP no pool and PL4 can route the traffic toa pool which is either gateway of the F5. Its here you can apply snat or irule for nat
https://devcentral.f5.com/Community/GroupDetails/tabid/1082223/asg/52/aft/1176770/showtab/groupforums/Default.aspx