Logging SNAT connections in Irule

Question

Hello,&nbsp;
I need some help on how to log the client actual source ip address and the address they are being SNAT'd to in the below Irule. Any help appreciated.&nbsp;
when CLIENT_ACCEPTED {
   if {[class match [IP::client_addr] equals InternalSubnets] }{
      snatpool Snat1
   } else {
 snatpool Snat2
   }
}&nbsp;
Thanks!&nbsp;

jaikumar_f5 · Answer

Something like this, used local_addr to capture snat details.
when CLIENT_ACCEPTED { 
if {[class match [IP::client_addr] equals InternalSubnets] }{ 
snatpool Snat1
log local0. "Client: [IP::client_addr] equals InternalSubnets, snatpool [IP::local_addr] "
} else { 
snatpool Snat2
log local0. "Client: [IP::client_addr] not part of InternalSubnets, snatpool [IP::local_addr] "
} }

Forum Discussion

Logging SNAT connections in Irule

1 Reply

Recent Discussions

google-visualization-issues

The best load balance method on this scenario?

SMS server with BIGIP

Geo Fence in ASM through irule for URI

Client certificate Authentication - open multiple tabs

Related Content

ASM LOGS

iRule for Logging a HTTP::header

How I did it - "Remote Logging with the F5 XC Global Log Receiver and Elastic"

Troubeshooting website connection

F5 Connection Mirroring question