See if an IP address is a member of a SNAT?

Question

I'm in a CLIENT_ACCEPTED iRule and I'd like to see whether my source address is going to be SNATed, either to a specific SNAT or auto-map... I don't see an IP:: for that... is there a way to do that?&nbsp;
&nbsp;Thanks - Al

the_bhattman · Answer

Hi Al, 
    In order to detect that you are using a SNAT you would need to use event  "When SERVER_CONNECTED" along with "[IP::local_addr]" which would returns the self-ip address or spoofed client IP address LTM is using for the serverside connection.  
 Example: 
 
when SERVER_CONNECTED {
   
     log local0. "Source IP address for connection to node: [IP::local_addr]"

}

I hope this helps
Bhattman

hooleylist · Answer

Hi Al, 
&nbsp;  
&nbsp; Can you give more info on your scenario?   
&nbsp;  
&nbsp; If you want to check the source IP address on the serverside connection, you can use Bhattman's example.  Or if you want to check the SNAT config, you might be able to use LB::snat before the serverside connection is established: 
&nbsp;  
&nbsp; http://devcentral.f5.com/wiki/iRules.lb__snat.ashx 
&nbsp;  
&nbsp; Aaron

Forum Discussion

See if an IP address is a member of a SNAT?

2 Replies

Recent Discussions

URL

service profile HTTP in LTM v16.1?

iRule resulting in too many redirects

Azure SAML - F5 APM

Converting config to DO

Related Content

SNAT IP address logging

How to ensure source address and source port are accepted and traversed properly via F5 SNAT automap

Persisting SNAT Addresses in Link Controller Deployments

CSV to Address External Datagroup File

DevCentral's Featured Member for February - Edouard Zorrilla