Preserving source IP when using LDAP

Question

I have read up on using the XFF header and using the X-forwarder in an HTTP profile, which works great for HTTP connections but, what do I do when I'm using a SNAT with LDAP servers?&nbsp;
&nbsp;I would like to preserve the source address of the incoming connection so that it shows up in the LDAP log rather than the SNAT address showing up.&nbsp;
&nbsp;Is there anyway to do this with an iRule?&nbsp;
&nbsp;Any help appreciated.&nbsp;
&nbsp;Thanks,
&nbsp;Kevin&nbsp;

kevin_nail · Answer

Thanks for the information. &nbsp;
&nbsp;What would the variables be in the iRule that I would use to insert the IP?&nbsp;
&nbsp;Also, how would that work exactly, will it interfere with LDAP protocol? or hose up anything that is being passed?&nbsp;
&nbsp;Sorry for so many questions, this is a new request for me as an LTM administrator and I don't know where to begin&nbsp;&nbsp;
&nbsp;Regards,
&nbsp;Kevin

victorc · Answer

Hi Kevin,&nbsp;
&nbsp;Were you able to ever get the source IP on your LDAP servers?  I have the same situation now using Oracle Internet Directory based on LDAP.  If you can share, that would be great.  I'm using LTM v9.x&nbsp;
&nbsp;Thanks,
&nbsp;Victor&nbsp;

hooleylist · Answer

Answered here: 
&nbsp;  
&nbsp; http://devcentral.f5.com/Forums/tabid/53/aff/42/aft/1172299/afv/topic/Default.aspx 
&nbsp;  
&nbsp; Aaron

Forum Discussion

Preserving source IP when using LDAP

3 Replies

Recent Discussions

ASM instance creation

[ASM] - what is "Browser Challange file" ?

[ASM] - HTML5 Cross-Domain Request Enforcement - CLI command

Reverse Proxy Not Behaving

Stable Firmware for F5

Related Content

How to ensure source address and source port are accepted and traversed properly via F5 SNAT automap

F5 XC vk8s workload with Open Source Nginx

F5 XC vk8s open source nginx deployment on RE

The Power of Source Address

Automate scp transfers using password