Learn F5 Technologies, Get Answers & Share Community Solutions Join DevCentral

Filter by:
  • Solution
  • Technology
Answers

Regarding SNAT IP

Hi,

Since I am new to F5, can anyone tell me how can I find SNAT IP assigned to which VIP. We have multiple VIP's on our F5, and it can take more time to check. Is there any easy way to find out?

Thanks in advance

0
Rate this Question

Answers to this Question

placeholder+image
USER ACCEPTED ANSWER & F5 ACCEPTED ANSWER

Hi

you can list the individual SNAT settings of your Virtual Servers via CLI...

[root@f501:Active:Standalone] / # tmsh list ltm virtual source-address-translation { type pool }
ltm virtual Test {
    source-address-translation {
        pool none
        type automap
    }
}

Cheers, Kai

0
placeholder+image
USER ACCEPTED ANSWER & F5 ACCEPTED ANSWER

Hi,

Just be carefull, there is a difference between snat pool / snat automap and SNAT.

  • snat pool / snat automap: To applied it to a VS, they must be atigned to the vs.

  • SNAT: you do not need the assigned vs (Local Traffic ›› Address Translation)

Image Text

NAT (SNAT) applies depending on the conditions you have entered in the snat profile.

So in order to see which snat pool / snat automap is set on VS use the following command:

list /ltm virtual all one-line | grep "snatpool-to-find"

For snat you have to check condition in your profil...

regards,

0
placeholder+image
USER ACCEPTED ANSWER & F5 ACCEPTED ANSWER

Hello, So basically you can configure SNAT in following ways. SNAT none : This will not NAT the source IP address, servers will see actually source IP address. SNAT Automap : The SNAT Automap feature selects a translation address from the self IP address in the order below. You can know the self ip by simply using the command tmsh list net self | grep "starting two to three octet of the IP eg. tmsh list net self | grep 10.224.25

Floating self IP addresses of egress VLAN Floating self IP addresses of different VLANs Non-floating self IP addresses of the egress VLAN Non-floating self IP addresses of different VLANs SNAT pool : Here you will define the IP address in the SNAT pool that needs to be used to NAT the source IP address. To know which SNAT pool is configured, you can use below command and then you can use the below command to know the IP address.

tmsh list ltm virtual Test source-address-translation { type pool } ltm virtual Test { source-address-translation { pool snatpool_1 type snat pool } }

tmsh list ltm snatpool snatpool_1

0