Channel to f5 virtual ip is open from client. New channel is created from server to client. Can I route back through f5?

Question

Is it possible to route outbound traffic from a server non destined to a virtual server, to a virtual server?&nbsp;
Example:&nbsp;
An agent on a clientA registers through a virtual server address which has two pool nodes serverA and serverB.&nbsp;
serverA and serverB create a new channel directly to clientA to send updates. There is no out of box configuration for the application on serverA or serverB to specify outbound traffic to utilize the virtual server. &nbsp;
Is it possible to route the return traffic through the virtual server to clientA? &nbsp;
Our acl's are blocking the return traffic directly to clientA. However, the virtual address on the F5 is open to all devices on the network. &nbsp;

nag_54823 · Answer

Hi alb4trauss, &nbsp;
Hope you are looking for SNAT.
Can you show me your VIP configuration. If you need return traffic passthrough LTM, you need to use SNAT . So source will be nat and server will see source as LTM selfip(snat automap) or VIP(IRULE) or pool of IPs(snat pool). Also, you should have routes from servers to LTM  &nbsp;

Forum Discussion

Channel to f5 virtual ip is open from client. New channel is created from server to client. Can I route back through f5?

1 Reply

Recent Discussions

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

Pricing when used with aws waf

F5 terminal - help to run commands - disk space full

import live updates from version x to version y

Tenant image upgrade

Related Content

Slack Channel?

Integrating SSL Orchestrator with Fortinet FortiGate Virtual Edition as a Virtual Wire

Restricting Access to Virtual from client IP address in X-Forwarder-For HTTP header

Quick Optimizations for F5 BIG-IP Virtual Edition

Check a Virtual Server's SSL Status