Forum Discussion

Nimbostratus

May 18, 2009

UDP Radius Client - Need Source IP

Hi, I'm presented with an interesting problem that I'm not sure how to attack. I'm working with a RADIUS environment (UDP ports 1812,1813)and trying to setup some basic ...

Employee

May 18, 2009

Hi,

Since the LTM preserves client source address by default, you likely have the LTM set up in a SNAT or "one-armed" configuration. If you are in a flat network, without SNAT, the packets will take an asymmetric path as I described in this post: Click here.

iRules can insert headers, but since there's no way to do an X-Forwarded-For header for RADIUS that I'm aware of (like there is for HTTP), your only choice may be to rearchitect the network such that the LTM is the default gateway for the RADIUS servers and you can remove the SNAT and go back to the default of preserving client source IP.

Denny

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

UDP Radius Client - Need Source IP

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Connection Rest f5

Kubernetes cert-manager + LetsEncrypt + F5

The GSLB pool is providing an incorrect IP to end users

Unable to ping from some self ip on Velos

Not seeing the latest F5OS-A when running Journeys

Related Content

iRule based RADIUS Client Stack

iRule based RADIUS Health Monitor Builder

Load Balance UDP (Retain Source Client IP)

iRule based RADIUS Server Stack

Phishing, Malware, Breach and Open-Source Security

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS