Forum Discussion

Casey_Halverson's avatar
Casey_Halverson
Icon for Nimbostratus rankNimbostratus
Apr 18, 2007

Putting remote internet host as node in VIP

Hello,

 

 

I have been looking around, and I cannot seem to find an iRule that will help out in this particular case.

 

 

I would like to put one external internet host into a VIP pool, and have the LTM proxy this connection between this remote internet host an the internet user. I would imagine this would be some sort of proxy or NAT iRule.

 

 

The protocol used is a custom TCP app, not HTTP, so i cannot use a redirect.

 

 

This will be done to facilitiate a migration between two datacenters, and will not be a permanent arrangement. Due to my requirements, I cannot have both datacenters accepting requests at the same time.

 

 

4 Replies

  • why do you need an irule to do this? just because the pool member is a long way away, shouldn't change anything logically.
  • By default, the BigIP was not able to go back out to the internet and load balance a remote internet host without causing asymetrical routing. I figured there was just some sort of proxy or NAT iRule function to properly go about this the right way.

     

     

    I was able to solve the problem by turning on the "auto-map" SNAT setting on the VIP. That way once a connection comes into the BigIP, it translates the source IP address as the BigIP, and sends it out the external interface. Im much happier the feature is more or less "built in".

     

  • I prefer to configure a single address in a snatpool and apply that instead of using automap so I can segregate traffic sourced from bigip by application for troubleshooting and qos purposes. Just an FYI
  • I would agree that this is a good idea, especially during packet analysis. I may actually do this during the migration, as these BigIPs are quite noisy.