Joe_Willis_4776
Sep 22, 2008Nimbostratus
Default Gateway at Server level versus SNAT-AutoMap at VIP level
Hi,
I have what I hope to be a simple (and maybe a "duh") question. How expensive is it, in terms of CPU cycles, to assign a SNAT Pool of Automap to every VIP to enforce traffic to egress back through the LTM? The thought is to take this approach as opposed to changing the default gateway of all pool members to be the floating self IP address of the LTM.
Why do you ask? We are in a switched environment and in almost all cases, the LTM is not acting as the gateway for any VLAN (rather, a switch is relegated this task). Going the default gateway route, we end up with a lot of asynchronous routing. Sure, we can address the routing issue by adding static routes to all pool member servers to use the VLAN's "normal" default gateway. This has started to become a headache to manage though, and is why I am here.
So, to boil it down, it would be easier for us to put the default gateways back to the VLAN's "normal" gateway for all pool member servers. In addition, we would assign a SNAT-Automap to all VIPs to make sure that any traffic initiated from the LTM would egress back through the LTM.
What are the consequences of doing this?