Help
Technical Forum
Ask questions. Discover Answers.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Technical Forum Quicklinks: No Replies | Active-Not Solved | Recent Solutions

Is it possible to disable NAT selectively

wtwagon_99154
Nimbostratus
Nimbostratus

‎17-Sep-2013 12:42

I.e.

 

If applied to a IP forward VIP, is it possible to selectively no-NAT via an iRule, similar to the following:

 

when CLIENT_ACCEPTED { snat none }

 

Or does this iRule statement also remove the NATs with the presence of "snat none"?

 

Thanks.

 

0 Kudos
2 REPLIES 2

JRahm
Community Manager
Community Manager

‎17-Sep-2013 13:58

you can be more selective than just the event itself, limiting to particular subnets or host. Details on snat behavior from iRules from the snat command page in the iRules wiki:

 

Causes the system to assign the specified source address to the serverside connection(s). The assignment is valid for the duration of the clientside connection or until 'snat none' is called. The iRule SNAT command overrides the SNAT configuration of the virtual server or a SNAT pool. It does not override the 'Allow SNAT' setting of a pool.

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
https://twitter.com/jasonrahm
https://www.youtube.com/devcentral
0 Kudos

StephanManthey
MVP
MVP

‎07-Mar-2022 07:26

The answer regarding enabling/disabling the destination NAT can be found here:

https://clouddocs.f5.com/api/irules/translate.html 

0 Kudos
Copyright © 2023 Khoros, LLC