Forum Discussion
NimbostratusWhich ARP does SNAT IP resolves
Hello All,
we have an issue with our exchange infra. our CAS servers do not able to ping one of the SNAT IP from pool. we are able to reach SNAT IP from switch.
Routes are good on server, already checked and verified.
when we did capture, it found that F5 is responding to ping but still ping fails from server. when we check arp entry, both SNAT IP resolving same arp on switch and on server too. Even if ARP resolution is OK on server for both IP, ping fails for one IP.
I cannt see any ARP entry on F5 for SNAT IP, is it normal?
please help on this.....
2 Replies
- nitass
Employee
when we did capture, it found that F5 is responding to ping but still ping fails from server. when we check arp entry, both SNAT IP resolving same arp on switch and on server too. Even if ARP resolution is OK on server for both IP, ping fails for one IP.
isn't it blocked somewhere before reaching server?
I cannt see any ARP entry on F5 for SNAT IP, is it normal?
i think it is normal.
root@(ve11a)(cfg-sync In Sync)(Active)(/Common)(tmos) list ltm snat-translation all-properties ltm snat-translation 200.200.200.41 { address 200.200.200.41 app-service none arp enabled connection-limit 0 description none enabled inherited-traffic-group true ip-idle-timeout indefinite partition Common tcp-idle-timeout indefinite traffic-group traffic-group-1 udp-idle-timeout indefinite unit 1 } root@(ve11a)(cfg-sync In Sync)(Active)(/Common)(tmos) show net arp 200.200.200.41 arp entry not found "200.200.200.41" root@(ve11a)(cfg-sync In Sync)(Active)(/Common)(tmos) 
Kalpesh_48932Ok..Is it normal, if one of the SNAT is not reachable from CAS server some users may face issue only on blakcberry service.
