b snat translation udp timeout immediate

Question

Hello -&nbsp;
We are working with a call center VOIP vendor and are experiencing some integration issues.  The primary problem is that the vendor cannot work with ephemeral ports. If the F5's connection table is population with a connection say:&nbsp;
src -ip:port  des-ip:port&nbsp;
If another connection occurs from the same scr ip to the same dest ip and port,, the LTM will use an ephemeral  src port. Standard behavior. But the vendor's product will not respond to the ephemeral  port but to the standard SIP port 5060.&nbsp;
The VOIP vendor recommeded changing the udp timeout of a snat translation to "immediate" . The man pages on the LTM indicates that this a valid command. However , when executed , the following occurs:&nbsp;
 &nbsp;
b snat translation   udp  timeout  immediate&nbsp;
BIGpipe SNAT translation address creation error:&nbsp;
   01070149:3: Translation address   cannot have a zero udp idle timeout.&nbsp;
Here is a snip from the man page&nbsp;
bigpipe snat translation  {}&nbsp;
        bigpipe snat translation ( â”‚ all) \&nbsp;
          [{]  [}]&nbsp;
           ::=&nbsp;
             &nbsp;
           ::=&nbsp;
             addr ( â”‚ none)&nbsp;
             arp (enable â”‚ disable)&nbsp;
             (enable â”‚ disable)&nbsp;
             ip timeout ( â”‚ immediate â”‚ indefinite)&nbsp;
             limit &nbsp;
             tcp timeout ( â”‚ immediate â”‚ indefinite)&nbsp;
             udp timeout ( â”‚ immediate â”‚ indefinite)&nbsp;
             unit &nbsp;
 &nbsp;
We are running on 1600s Version 10.2.4&nbsp;
 &nbsp;
Any suggestions , work arounds would be greatly appreciated.&nbsp;
Thanks -jim&nbsp;

nitass · Answer

i cannot set snat translation immediate idle timeout as welll even online help and sol7606 both mention it is an option. i tested on 10.2.4 and 11.2.1. 
&nbsp;  
&nbsp; sol7606: Overview of BIG-IP idle session timeouts 
&nbsp; http://support.f5.com/kb/en-us/solutions/public/7000/600/sol7606.html 
&nbsp;  
&nbsp; anyway, are you using snat to handle traffic (not virtual server)? if you are using virutal server, can you try to set immediate idle timeout on profile? i understand the shorter (between profile and snat) will take effect.

what_lies_bene1 · Answer

Does the connecting 'client' use the correct port. If so you could try setting the Source Port Preservation to Preserve Strict on the VS?

jim_24689 · Answer

Thank you all for the suggestions. I will give them a shot.  -jim&nbsp;

Forum Discussion

b snat translation <ip> udp timeout immediate

3 Replies

Recent Discussions

F5Access | MacOS Sonoma

Rewrite uri translation not working

Chrome V 124+ on MacOS - Virtual Server Access Issue

Transaction looks successful but file not downloading

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

Related Content

Is there a traceroute equivalent in F5 like the format of ping -I <source ip> <destination ip>

Radware config translation

GTM Translation

IPv6 Virtual Server to IPv4 pools translation

Network Translations