Kevin_Nail
Aug 23, 2007Nimbostratus
Selective SNAT setup
Thanks for reading, any help would be appreciated. Here is my setup
US based LTM in DMZ
pool AMK_US
member 192.168.x.x (behind the local LTM)
member 192.55.x.x (on a server in Singapore)
Virtual server
192.55.x.x
We have a vlan called internal_5 setup with an ip of 192.168.x.x on the LTM.
Here is what we want to do:
1. When a request comes in from a business partner in the US, if the US pool member is up, traffic is sent to it.
2. If that pool member is down then the traffic will be routed to Singapore.
We have added a static route to the LTM to use the 192.168.x.x IP as it's route to get out. Problem is that we need to have that and only that traffic SNAT'd so that it returns to the LTM. There is also another default SNAT in place for other internal nodes on the LTM.
How can we create an iRule that will SNAT traffic that comes in the 192.55.x.x VIP and leaves for 192.55.a.x via the 192.168.x.x IP without affecting anything else?
Also the question comes to mind, should the iRule be applied to the 192.55.x.x VIP only and on what interface (external - to outside or internal - to behind LTM)
Thanks,
Kevin