SNAT between router domain

Question

Hello all
we have an F5 LTM with different router domains configured. In a RD%3 we have a pool with private IP. This pool is reachable from outside using a VS located in RD%5. This is working properly.
From outside customers uses VS public IP in RD%5 and they reach POOL devices on RD%3.
What is not working is the outbound traffic. When POOL devices start connections. We configured an SNAT POOL with an public IP%5 (from RD%5).
Is there something in particular we have to do for configuring SNAT between different RDs?
Basically we want to use a IP from RD%5 for traffic generated form RD%3.
Thanks &nbsp;
Mirko&nbsp;

nitass · Answer

can you post configuration (e.g. virtual server, snat) which handles server (pool member) initiated traffic?&nbsp;

mikr0minquez_15 · Answer

Hello, sorry for the delay
we configured in Local Traffic  ››  Address Translation : SNAT List&nbsp;
ltm snat /Common/infoCH {
    origins {
        10.11.12.13%3/32 { }
    }
    translation /Common/222.30.41.13%5&nbsp;
best regards&nbsp;

nitass · Answer

do you also have virtual server which will match server-initiated traffic?

sol9038: The order of precedence for local traffic object listeners  
https://support.f5.com/kb/en-us/solutions/public/9000/000/sol9038.html

anyway, would it be easier to remove snat list and create virtual server for server-initiated traffic (e.g. 0.0.0.0%3:0/0 with 222.30.41.13%5 as snatpool member)? can you try?

Forum Discussion

SNAT between router domain

3 Replies

Recent Discussions

ASM instance creation

[ASM] - what is "Browser Challange file" ?

[ASM] - HTML5 Cross-Domain Request Enforcement - CLI command

Reverse Proxy Not Behaving

Stable Firmware for F5

Related Content

How to use Ansible with Cisco routers

Enriching AFM with public domain Threat Intelligence

domain blocking

what is HTTP MRF Router option

Change cookie domain in HTTP::respond