conversion of CSS SNAT to F5 LTM
Hi Guys,
I have a question about how to convert the ACL based SNAT from CSS to LTM:
For example I have following ACL based SNAT configured on CSS:
group app_vip vip address 168.108.161.147 active acl 99 clause 10 permit any 168.108.164.0 255.255.255.0 destination 168.108.161.0
255.255.255.0 sourcegroup app_vip
this would tell the CSS to SNAT any traffic from source subnet 168.108.164.0/24 to destination subnet 168.108.161.0/24 to be IP address 168.108.161.147. and this IP address is on the VIP VLAN.
is there anyway I can do the same thing on LTM if the pool members are not using LTM as default gateway? I can do a irule with when_connect function to do the SNAT, however how can I fix the asymmetric routing issue? the return traffic from pool members are always passed to .1 and the TCP connection breaks.
sincerely Thanks