Log in Go to the main page Page History Go to the file list Go to the site toolbox

Snat command, bigpipe

From NetworkStuff

Utilities-terminal-v2-256.png

F5-logo-large.png

A CLI command available on most F5 BigIP platforms; used to create, modify, display and delete SNAT translations.

Contents

Preferences-desktop-font-v2-22.png Usage Syntax

bigpipe snat name [options]

Common options include;

  • mirror [enable | disable] - enable or disable connection mirror between peers in a HA pair
  • automap - create an automap SNAT (traffic will be NATted using the IP address of the BigIP interface it leaves through.)
  • origin ip_address(es) (mask netmask) [add | delete] - specify origin (or original) source addresses that will be NATted by this SNAT
  • translation ip_address - specify the translation IP address, the address the origin source address is NATted to
  • snatpool pool_name - specify a SNAT pool that will be used for translation addresses (thus automap and translation cannot be used in conjunction with this option.)
  • vlans [name(s) | all] [enable | disable] - specify VLANs this SNAT will be enabled or disabled on (relative to the VLANs origin addresses will arrive from/on.) The default is all
  • [name | all] stats - display statistics for all or the specified SNAT
  • [name | all] stats reset - reset or clear statistics for all or the specified SNAT

Vm-power-on-medium.png Usage Examples

bigpipe snat - display status and configuration information for all configured SNATs

bigpipe snat snat_one mirror enable - enable connection mirroring for the existing SNAT called snat_one

bigpipe snat snat_one mirror enable automap origin 10.15.15.2 vlan vlan_one enable - create an automap SNAT called snat_one used by origin address 10.15.15.2, enable connection mirroring and enable on vlan_one only

bigpipe snat snat_one origin 10.15.15.3 add - add a further origin address to the SNAT created by the command above

bigpipe snat snat_two origin 10.15.20.0 mask 255.255.255.0 translation 55.11.12.1 - create an SNAT called snat_two using a translated address of 55.11.12.1, used by origin addresses on the 10.15.20.0/24 network

Accessories-text-editor-v2-medium.png Bigpipe Usage Notes

From v9.4, be aware of the administrative partition that is currently active; use the bigpipe shell partition command to display the current active partition name and the bigpipe shell partition name command to change partitions.

A full command manual can be displayed using the man command followed by the command name, for example: man pool or by suffixing the command name with the help keyword, for example; bigpipe pool help.

In most cases, the show keyword displays object status or statistics and the list keyword displays configuration. Remember, from v9.4, only objects in the currently active administrative partition will be displayed.

The bigpipe command can be abbreviated to just b (e.g. b help instead of bigpipe help.) Alternatively, (from v9.4,) you can use the bigpipe shell to enter commands without prefixing them with bigpipe.

Where curly or normal brackets {} or () or quotes "" or exclamation mark ! are required as part of a command and you are not using the bigpipe shell, they must be proceeded with a back slash \ to prevent the BASH shell from parsing them as system commands.

Don't forget to save your changes using the bigpipe save all command as necessary.

Utilities-terminal-medium-v2.png Typical Output

b snat show; 

SNAT snat_outbound_test
|     (cur, max, limit, tot) = (11, 19, 0, 1165)
|     (pkts,bits) in = (7.712M, 3.353G), out = (18.62M, 31.20G)
+-> SNAT ORIG ADDR snat_outbound_test/11.12.1.50
+-> SNAT ORIG ADDR snat_outbound_test/11.12.1.52
+-> SNAT ORIG ADDR snat_outbound_test/11.12.1.55
+-> SNAT ORIG ADDR snat_outbound_test/11.12.1.86
+-> SNAT ORIG ADDR snat_outbound_test/11.12.1.87
+-> SNAT ORIG ADDR snat_outbound_test/11.12.1.90
+-> SNAT TRANSLATION 11.12.2.10
    |     (cur, max, limit, tot) = (30, 33, 0, 251)
    |     (pkts,bits) in = (133.1M, 57.65G), out = (254.0M, 446.0G)

Icemon-medium.png Related Commands

The bigpipe snatpool command to create SNAT pools.

Use the bigpipe snat translation command to specify an idle timeout (and other parameters) for SNAT translation addresses.

Icemon-medium.png Related Articles

Information on other F5 BigIP commands F5-logo-small.png

Information on Linux commands Linux-logo-small.png

Information on Cisco commands Cisco-logo-small.png

Information on Vyatta commands Vyatta-logo-small.png

Information on Force10 commands Force10-logo-small.png

Information on Arista commands Arista-logo-small.png

Information on Extreme commands Extreme-logo-small.png

Information on Nortel commands Nortel-logo-small.png

Information on Zebra commands

Information on Windows commands Preferences-system-windows-small.png

Information on Secure Platform commands

Information on Blue Coat SGOS commands

Information on Nokia IPSO commands


Internet-group-chat-small.png We really do appreciate all feedback so please do send your comments, suggestions or corrections to steve#networkstuff.eu (replacing the # with an @)


Retrieved from "http://www.networkstuff.eu/index.php/Snat_command,_bigpipe"

Personal tools
This page was last modified on 26 May 2010, at 10:55. - Disclaimers - About Network Stuff
Powered by MediaWiki