clowe_16759
Nov 07, 2007Nimbostratus
iRule to SNAT Server
I am very inexperienced in writing iRules.
Background: there are virtual severs that serve our web servers and virtual servers that serve our database server. The Web and DB servers are on different VLANs and the layer-3 switch will be in between the servers and the LTM.
The web servers connect to the Database servers via the virtual servers on the inside interface of the LTM. I know that a SNAT is needed to prevent bounce back issues. The problem is that I would like to be able to provide statistics and troubleshoot issues and know which web server/s are talking to the Data base server/s and a many to one SNAT would prevent this.
Idea solution: create an iRule such that any connections from the web VLAN gets SNAT'ed to a particular IP Address for each host from the web VLAN defined in a pool, when connecting to a DB virtual server. Essentially automatically making a one to one SNAT without having to define on every time a new web host is brought on line.
If this is confusing sorry, I am a little confused myself.