SNAT pool member seems to be ignored

Question

I've got an IP Forwarding virtual server. With SNAT enabled, and a pool specified, it works fine. When I disable SNAT on the virtual server and use "snatpool" on an iRule, it also works fine. But when I specify an individual SNAT pool member (using snatpool  member ), it still seems to randomly draw a member from the pool.&nbsp;
I also tried just "snat ", but in that case, traffic was not forwarded at all. No error messages anywhere.&nbsp;
Thoughts? Thanks,&nbsp;
Norman&nbsp;

bboyjnr_8532 · Answer

Hi Norman,&nbsp;
Wiki says its valid...&nbsp;
https://devcentral.f5.com/wiki/iRules.snatpool.ashx&nbsp;
can we have a look at the rule?&nbsp;
thanks,&nbsp;
bb&nbsp;

norman_elton_13 · Answer

The rule is pretty simple:

when CLIENT_ACCEPTED {
  snatpool WM-SNAT member 192.168.2.22
}

It continues to function as if I hadn't specified a member. I'm suspecting it may just be a bug.

If I specify an IP address with "snat [IP]", it seems that IP must already be configured in a SNAT pool, or else the F5 won't respond to ARPs. So that issue is explainable.

Thanks

Norman

bboyjnr_8532 · Answer

just tested and used...

when CLIENT_ACCEPTED {
     snatpool snat_pool member 172.16.17.37
}

and works on v10 perfectly and v11, maybe a bug :S

Forum Discussion

SNAT pool member seems to be ignored

3 Replies

Recent Discussions

Geo Fence in ASM through irule for URI

Chrome V 124+ on MacOS - Virtual Server Access Issue

google-visualization-issues

The best load balance method on this scenario?

SMS server with BIGIP

Related Content

DevCentral's Featured Member for February - Edouard Zorrilla

STREAM::expression doesn't seem to work

DevCentral's Featured Member for March - Thomas Dahlmann

DevCentral's Featured Member for April - Mihai Cziraki

CACHE::disable iRule doesn't seem to be working.