SCTP Support

Question

Hi,
&nbsp;I need to get my big-ip box to forward sctp signalling from an address in the internal vlan to an address in the external vlan.
&nbsp;I've created the "Self-IP"s and SNATs for this, and now I can ftp just fine from the internal side to the external, but sctp messages (..and icmp "pings") are dropped at the Big-IP..  (I can see an "unreachable - admin prohibited" response to pings) &nbsp;
&nbsp;Do I need to start learning about iRules in order to accomplish this or any other ideas?&nbsp;
&nbsp;Any comments would be highly appreciated, especially if anyone has experience on sctp with 9.x..&nbsp;
&nbsp;brgds,
&nbsp;TL

jrahm · Answer

snats by default only allow tcp/udp, you'll need to alter, but this can be done without iRules.&nbsp;
&nbsp;In the GUI
&nbsp;  SYSTEM-&gt;GENERAL PROPERTIES-&gt;LOCAL TRAFFIC-&gt;GENERAL&nbsp;
&nbsp;See attachment

jrahm · Answer

no problem, glad I could help!  I would encourage you to spend time learning iRules anyway, you may come up with a need in the future, better to be prepared for it!&nbsp;&nbsp;

richard_young_2 · Answer

I have the BIG-IP LTM system running version 9.4.3. Will this version support SCTP load balancing and if not what version will I need?

michael_yates · Answer

SCTP Load Balancing support started in v9.4.2. 
&nbsp;  
&nbsp; http://support.f5.com/kb/en-us/solutions/public/3000/800/sol3800.html?sr=16761186 &nbsp;

Forum Discussion

SCTP Support

4 Replies

Recent Discussions

Advise on setting up IRULE

google autenticator broken barcode

Port Group on F5OS network setting

vulnerabilities (CVE-2020-36363), CVE-2016-0736,CVE-2019-6593-FOR VERSION BIGIP LTM-16.1.4

Unwinding the Benefits of Investing in White Label Crypto Wallet

Related Content

TMOS v17 support policy

f5 iHealth and Support

LTM Diameter iRules and Profile Configurations with Support for Server Initiated Request

Changing ASM support ID error page

BIG-IP DNS Forwarder Support via iRule