Forum Discussion

XITO_122925's avatar
XITO_122925
Icon for Nimbostratus rankNimbostratus
Apr 03, 2018

members can't connect to their own Virtual Server

Hi,

 

Hope someone can help me to solve the problem

 

The Problem:

 

The pool member cannot reach the VIP

 

Our Setup: We are using an in-line F5 Setup with a forwarding virtual server. Our web server (pool members) are using the F5 as the default gateway. On the F5 we have two VLAN. One external for the VIP IP-range and one internal for the load balancer range. The VIP doesn’t use SNAT or Automap. If we try a simple wget from the web server to the VIP, the connection is forceful closed

 

I am not sure if my understanding is correct, but in a in-line F5 Setup, the pool member should reach the VIP without the SNAT, or do we always have to use SNAT?

 

Regards daniel

 

application delivery
BIG-IP
LTM

3 Replies

Sort By
  • crodriguez's avatar
    crodriguez
    Ret. Employee
    Apr 03, 2018

    Can you please provide the configuration for the virtual server?

     

  • XITO_122925's avatar
    XITO_122925
    Icon for Nimbostratus rankNimbostratus
    Apr 04, 2018

    Hi, Thanks for your replay. Some printscreens of our VIP.We are note sure if we have to configure Automap or SNAT on the VIP with a in-line F5 Setup. thx

     

     

  • Stanislas_Piro2's avatar
    Stanislas_Piro2
    Icon for Cumulonimbus rankCumulonimbus
    Apr 04, 2018

    Hi,

    the issue is because there is no source address translation enabled on the VS (which is good).

    enable this irule on the VS to enable the SNAT automap if the pool member is in the same network as the client.

    when LB_SELECTED { 
   if {[IP::addr "[IP::client_addr]/24" equals "[LB::server addr]/24"]} { 
      snat automap
   }
}