Forum Discussion

JCMATTOS_41723's avatar
JCMATTOS_41723
Icon for Nimbostratus rankNimbostratus
Dec 07, 2007

SNAT Global IP access?

Hi all we have an LTM 9.4x and we would like to attempt a Proof-Of-Concept with the BigIP to test loadbalancing external public IP's. This may seem unusual at first but again this is a POC. We have an internal VIP/80 172.x.x.x/24 that we would like to loadbalance/forward requests to a public website (example: www.F5.com). I was recommended by F5 to use SNAT to get by the Vlan translation issues but still no luck. I have a VIP (172.x.x.x/24) ==> POOL (www.F5.com) along with a SNAT Pool 172.x.x.x /24. I can get to the site from the box itself, but not thru the VIP any ideas or recommendations? I'm new to BigIP not sure where to begin...Please Help!

 

 

 

172.x.x.x/24 VIP (Internal)

 

/ \

 

www.F5.com (POOL Member External)
config
design

3 Replies

Sort By
  • James_Thomson's avatar
    James_Thomson
    Icon for Employee rankEmployee
    Dec 10, 2007
    When testing, did you add an entry to your testing machine's host database? You'll want to add a line pointing www.f5.com to 172.x.x.x so that when you type in f5.com, it sends you to the vip. Many websites require a host header to be sent to accept the traffic, so you can't send traffic to an IP address that doesn't match what they expect as a host header.
  • James_Thomson's avatar
    James_Thomson
    Icon for Employee rankEmployee
    Dec 10, 2007
    make sure you have assigned the SNAT pool to the Virtual Server. You need to be in the advanced section to see that.
  • JCMATTOS_41723's avatar
    JCMATTOS_41723
    Icon for Nimbostratus rankNimbostratus
    Dec 10, 2007
    Thx J, In our DNS we have the name resolution for the VIP www.test.F5.com ==> 172.x.x.x/24 . We do have the SNAT Pool added to the VIP in advanced mode, but still no luck...response code 400!