Show iRule SNAT Statistics

Question

I have a number of LTM wildcard Virtual Servers defined which have iRules applied that NAT the source address.  Here is an example of an iRule:
text
when CLIENT_ACCEPTED {
snat 1.1.1.1
}
text
I am seeing intermittent dropped connections and I am trying to determine if I am exhausting the ephemeral ports.  I have tried running 'tmsh show ltm snat detail',  but that only appears to display the statistics for defined SNATs and not SNAT functions generated from an iRule.
Is there a way to show the statistics for a SNAT that is defined in an iRule, but not defined in the SNAT list?

hooleylist · Answer

HI Eric,&nbsp;
you might not get stats on an arbitrarily selected address from an iRule.  Instead, you should be able to define a SNAT pool (even of 1 IP address) and select that from the iRule using 'snat my_snat_pool'.&nbsp;
Aaron&nbsp;

colin_walker_12 · Answer

The other option would be to track stats manually within the iRule via the stats profile or the like, which would then allow you to pull stats as desired. That route, however, would likely be a bit more work, while offering more flexibility, so it's a decision on RoI.&nbsp;
Colin

Forum Discussion

Show iRule SNAT Statistics

2 Replies

Recent Discussions

(How) can I get two client certificates in one APM session?

Open Redirection Mitigation

Using okta as SSO to login F5 GUI

snmp automatic stop mail send

BIG-IP DNS iRule issue with static variable

Related Content

Parsing F5 BIG-IP LTM DNS profile statistics and extracting values with Python

Rewrite profile statistics in ltm

Show Interface Bit Rate Statistics

F5 LTM Virtual Statistics Timeframe

F5 BIGIP showing wrong time