Forum Discussion

ashok_65614's avatar
ashok_65614
Icon for Nimbostratus rankNimbostratus
Mar 17, 2010

Outbound Connection

Hi,

 

 

we have LTM 6900(Active/Passive) and we are using this as a proxy server for certain purposes.

 

 

Source will be our webservers and destination will be client ip's

 

 

LTM Outbound IP

 

 

Active : 192.168.100.1

 

Passive : 192.168.100.2

 

Floating : 192.168.100.3

 

 

When ever i am connecting to the client ip's the outbound connection from LTM will have the ip as my virtual(192.168.100.3)

 

 

Webserver (192.168.200.10)-----> LTM VS IP(192.168.150.10:4555)-----> 192.168.100.3 will be received as source ip in my client firewall.

 

 

LTM VS IP (192.168.150.10:4555)

 

Node 1 : 10.10.10.1 - Client IP 1

 

Node 2 : 10.10.10.2 - client IP 2

 

 

 

Requirement:

 

============

 

 

Need to have another outbound ip when ever i am connecting to particular LTM VS having the client node ip's.

 

 

Say :

 

 

Webserver (192.168.200.10)-----> LTM VS IP(192.168.150.20:4777)-----> 192.168.100.4 will be received as source ip in my client firewall.

 

 

LTM VS IP (192.168.150.20:4777)

 

Node 1 : 10.10.10.10 - Client IP 1

 

Node 2 : 10.10.10.20 - client IP 2

 

 

 

Is there any possibility to have another floating ip to be configured as like cisco MHSRP ( having multiple floating ip's)

 

 

Thanks in advance

 

1 Reply

  • Hi

     

     

    SNAT Pools can do this for you, create 2 pools, add one address to each pool, and associate one pool to each virtual server. (safest method)

     

     

    Or, you can leave the existing SNAT, add one pool, with one (different address) and associate this with one of the two virtual servers. (unsure why this works, can anyone elaborate on how the SNAT matching works ? it appears to be a case of last match in the list - but I've not spent much time looking at it)

     

     

    Note, I am on V 9.x - V 10 may do this different.

     

     

    J