cancel
Showing results for 
Search instead for 
Did you mean: 
Login & Join the DevCentral Connects Group to watch the Recorded LiveStream (May 12) on Basic iControl Security - show notes included.

F5 VIP forwards to all pool members whilst retaining source IP

raj
Nimbostratus
Nimbostratus

Hey

 

anybody know of an iRule to forward SNMP trap messages to all pool members whist retaining the source-ip

 

similar to below iRule but we need to retain the source ip

 

https://devcentral.f5.com/s/question/0D51T00006n5Qvn/f5-vip-listens-on-udp-port-514-and-forwards-to-all-servers-in-pool

 

thanks

8 REPLIES 8

Heino
Cirrus
Cirrus

If you are only using UDP you could try to set Address Translation to none. Alternatively you will have to add an irule replaces the source address, but that'll be a task and a half, as UDP does not seem to include local address.

 

The appropriate way to do this is to make F5 the router for the servers it loadbalances for. This will also make it possible to retain actual IP adress of TCP connections (as long as the server and client aren't on the same network).

 

raj
Nimbostratus
Nimbostratus

Address translations is already set to none this is not TCP and is one armed load balancing

just a simple one way snmp trap UDP packet sent to a VIP which does not SNAT and would like it to forward to two pool members whilst retaining the source ip.

Heino
Cirrus
Cirrus

Aside from Source Address Translation, there's also the Address Translation checkmark. It is usually enabled by default. Has this also been disabled?

raj
Nimbostratus
Nimbostratus

yes tried removing both of those ticks too no change.

You are required to go with a UDP protocol with a Fast L4 setup without any SNAT in it.

raj
Nimbostratus
Nimbostratus

ok and that will make it forward to ALL pool members will it?

 

one way snmp trap UDP request sent to a VIP which does not SNAT and would like it to forward to two pool members simultaneously whilst retaining the source ip.

Guarinos
Nimbostratus
Nimbostratus

A virtual server is a traffic-management object on the BIG-IP system that is represented by an IP address and a service (port number). Clients on an external network can send application traffic to a virtual server, which then directs the traffic according to your configuration instructions mcdvoice login

raj
Nimbostratus
Nimbostratus

ok i don't think this is going anywhere please read the initial question, i think everyone on here knows what a VS is.

 

how does it send from VIP to 2 pool members at the same time no Load balancing.