Forum Discussion

Nimbostratus

May 18, 2009

UDP Radius Client - Need Source IP

Hi, I'm presented with an interesting problem that I'm not sure how to attack. I'm working with a RADIUS environment (UDP ports 1812,1813)and trying to setup some basic ...

Employee

May 18, 2009

Hi,

Since the LTM preserves client source address by default, you likely have the LTM set up in a SNAT or "one-armed" configuration. If you are in a flat network, without SNAT, the packets will take an asymmetric path as I described in this post: Click here.

iRules can insert headers, but since there's no way to do an X-Forwarded-For header for RADIUS that I'm aware of (like there is for HTTP), your only choice may be to rearchitect the network such that the LTM is the default gateway for the RADIUS servers and you can remove the SNAT and go back to the default of preserving client source IP.

Denny

Forum Discussion

UDP Radius Client - Need Source IP

Recent Discussions

What happens if I only enable ASM in BIG-IP Under System > Resource Provisioning

URL

Migration from i series 10200 with 1 child VCMP to r series 10900 series

Azure DP-100 Exam Questions

Deploying F5 WAF in front of Azure Web App Services

Related Content

iRule based RADIUS Client Stack

iRule based RADIUS Health Monitor Builder

iRule based RADIUS Server Stack

RADIUS update NAS-IP-Address

How to ensure source address and source port are accepted and traversed properly via F5 SNAT automap