Forum Discussion

Altostratus

Apr 27, 2011

avoid changing source port of the connection while using SNAT

Hello,

We are using SNAT in the irule. Lets assume client's Ip address 192.1.1.1 and port 9999, after the SNAT operations

we manage to change the clients IP address to spesific ip address format which is Okay and works fine. But although we do not do any change in the SNAT statement in the irule about the source port ( client's port), its also changed randomly. Is there any way to preserve source port same? We do not want to change the source port we want it to remain same.

Any help will be greatful.

Thanks a lot in advance.

Lilly

config

design

12 Replies

hooleylist
Cirrostratus
May 02, 2011
By default, LTM should not change the source port of client requests unless the source port is already in use on the serverside to the same destination IP. CMP can also affect the source port selection.

If this is failing for you constantly, I'd open a case with F5 Support. They'll be able to help you capture tcpdumps and review your configuration.

Aaron
LillyM_9417
Altostratus
May 03, 2011

It will be great for us to open a case. I can provide tcpdump and other files.

Thanks a lot.

I m lookşng forward your response.

Forum Discussion

avoid changing source port of the connection while using SNAT

12 Replies

Recent Discussions

Azure SAML - F5 APM

Converting config to DO

iRule resulting in too many redirects

Wildcard SSL Certificate Deployment on F5 LTM

URL

Related Content

Unable to change auth source to rasidus

Change original source IP to random in ASM logs

Securely connecting Kubernetes Microservices with F5 Distributed Cloud

How to ensure source address and source port are accepted and traversed properly via F5 SNAT automap

Find connection attempts via source IP