SNAT vs Automap

Question

Could you please explain in easy to understand manner the difference between SNAT and Auto-map with examples? Also, how to decide which one to use?

cjunior · Answer

Hi,As far as I know, using automap is the same as using a SNAT pool with the floatt IP from BIG-IP (or self when float are not set).The automap option tells to BIG-IP to decide what source IP to use to reach the destination on network.With SNAT pool, you tell to BIG-IP what source IP list to use to reach destination on network.Since a IP origin have a port limit (~60k) to use, you set a SNAT pool with two and more to avoid that port exhaustion.How to decide to use it?My understand, think about port exhaustion or when need to use an source IP that differs from float IP.For sure, SNAT is a BIG-IP address on behalf of client origin address. It's useful and needed to ensure that response traffic is returned through the BIG-IP when servers and/or routers don't have route back to BIG-IP, so preventing the server from responding directly to the client&nbsp;See a complete doc:https://support.f5.com/csp/article/K7820&nbsp;I hope it helps.

Forum Discussion

SNAT vs Automap

1 Reply

Recent Discussions

import live updates from version x to version y

Tenant image upgrade

iRule editor partition button does not work

F5Access | MacOS Sonoma

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

Related Content

Kill SNAT AutoMap!

How to ensure source address and source port are accepted and traversed properly via F5 SNAT automap

SNAT IP address logging

SNAT Automap

F5 SMTP Fast Template - SNAT Not working as expected