What is intelligent SNAT and what's the use case of iSNAT?
And:--It's just irule based snat
An example case is when your downstream is different clients eg your pool members are routers, when destination is A -> use SNAT pool A, when its B use SNAT pool B.
but its basically any scenario when you need to use more than a single SNAT configuration for traffic leaving a virtual server.
or you need overrides, say there is a test call that is used to test the web->app->db framework so the firewall rules are setup to allow this test from specific source addresses. Normal customer traffic has what SNAT is assigned to the virtual server. When the test HTTP web call is detected the iRule can override to a different SNAT address thats specifically permitted for testing.
And:--It's just irule based snat
An example case is when your downstream is different clients eg your pool members are routers, when destination is A -> use SNAT pool A, when its B use SNAT pool B.
but its basically any scenario when you need to use more than a single SNAT configuration for traffic leaving a virtual server.
or you need overrides, say there is a test call that is used to test the web->app->db framework so the firewall rules are setup to allow this test from specific source addresses. Normal customer traffic has what SNAT is assigned to the virtual server. When the test HTTP web call is detected the iRule can override to a different SNAT address thats specifically permitted for testing.
intelligent SNAT just means YOU can define the rules when it is applied.
No comments:
Post a Comment