Forum Discussion

will_98808's avatar
will_98808
Icon for Nimbostratus rankNimbostratus
May 07, 2010

BIG-IP Link Controller - NAT issue with 2nd ISP

Greetings everyone,

 

 

I'm relatively new to the F5 world, and have come across an issue I was hoping to get some clarification on from those more knowledgeable --

 

 

I have an F5 BIG-IP Link Controller (v10.1.0) that has a few static NAT entries configured -- when we initially deployed, we only had 1 ISP, but a second coming soon, and all the static NAT entries worked without an issue.

 

 

Now that we have added the second ISP, at least one of the static NAT entries has had problems (that I know of so far) -- but only when that user tries to use HTTPS.

 

 

Does anyone have any idea as to how / why that is occurring, or steps I can take to help troubleshoot?

 

 

For now, I have deleted the static NAT entry and created a SNAT rule to SNAT to an IP on either ISP, which has resolved it for now, but i'm still not clear on why the problem happened in the first place.

 

 

Thanks!

 

 

Will

 

config
design

1 Reply

Sort By
  • hooleylist's avatar
    hooleylist
    Icon for Cirrostratus rankCirrostratus
    May 11, 2010
    Hi Will,

     

     

    Can you describe what the actual issue is when a client tries to use HTTPS through a NAT with both ISP links enabled? Which link is the client coming into LTM over? What do you see in a tcpdump on all VLAN's for the client IP or server IP's?

     

     

    Thanks,

     

    Aaron