Forum Discussion

Daniel_Ao_10370's avatar
Daniel_Ao_10370
Icon for Nimbostratus rankNimbostratus
Mar 19, 2010

NAT problem in BIGIP platform

I have configured two self-ip in my LTM device. Both two IPs are private IPs (Please see the network diagram. I have created a network virtual server (destination: 0.0.0.0/0.0.0.0) and enable SNAT (10.0.0.0/24 and 192.168.2.0/30 will be translated to 2.2.2.100 ) so that the back-end servers with IP 10.0.0.x and 192.168.2.0/30 can access the Internet using public IP 2.2.2.100. My question is how to access the Internet for my LTM device. I am setting a NTP server and DNS server in LTM device and found that my LTM device cannot reach the Internet. It seems SNAT only works for the backend servers.
config
design

2 Replies

Sort By
  • hooleylist's avatar
    hooleylist
    Icon for Cirrostratus rankCirrostratus
    Mar 19, 2010
    Hi Daniel,

     

     

    If you want LTM originated traffic to be routed, you'd need to add a route using 'b route' or the GUI's Network >> Routes section. If you want LTM originated traffic to be routed through the management port, you'd need to add a management route using 'b mgmt route'.

     

     

     

    See SOL3669 for details:

     

     

    SOL3669: Overview of management interface routing

     

    https://support.f5.com/kb/en-us/solutions/public/3000/600/sol3669.html

     

     

    Aaron
  • Daniel_Ao_10370's avatar
    Daniel_Ao_10370
    Icon for Nimbostratus rankNimbostratus
    Mar 19, 2010
    I have added the default route to 192.168.2.1 in my LTM device. But my problem is:

     

     

    1. 10.0.0.1 can be translated to 2.2.2.100 when accessing the Internet.

     

    2. 192.168.2.2 (LTM self-ip) CANNOT be translated to 2.2.2.100 when accessing the Internet.

     

     

    cause 192.168.2.2 cannot be translated to public ip, 192.168.2.2 cannot reach the Internet.