Skip to main content
sklotz
sklotz
Explorer
August 24, 2023
Solved

FortiADC NAT Source Pool as VS-address

  • August 24, 2023
  • 4 replies
  • 2364 views

On FortiADC I tried to configure a NAT Source Pool with an IP-address of an existing VS, but seems to be not possible, as I get an error message saying that this IP-address is a duplicate to an existing VS.

Is this really a normal behavior and if so, why is there such a restriction?!?!?!
Background: we are currently planning a platform migration from F5-LTM to FortiADC and in F5 world we are using SNAT with the same IP-address as the VS itself.

How can this be configured with FortiADC?
Thank you!

Regards Stefan :)

Best answer by Anthony_E

Hi Stefan,

 

Could you please have a look at this documentation:

https://docs.fortinet.com/document/fortiadc/7.4.0/handbook/630669/using-source-pools

 

Tell me if it is helpful.

 

Regards,

4 replies

Anthony_E
Staff
Anthony_E
Staff
August 28, 2023

Hello Stefan,


Thank you for using the Community Forum. I will seek to get you an answer or help. We will reply to this thread with an update as soon as possible.


Thanks,

Best Regards
Anthony_E
Staff
Anthony_EAnswer
Staff
August 29, 2023

Hi Stefan,

 

Could you please have a look at this documentation:

https://docs.fortinet.com/document/fortiadc/7.4.0/handbook/630669/using-source-pools

 

Tell me if it is helpful.

 

Regards,

Best Regards
sklotz
sklotzAuthor
Explorer
October 11, 2023

Sorry for the late reply, but I get the solution in the meanwhile via internal Fortinet colleagues.
There is CLI command, where you can enable this globally.

config sys global

set share-ip-address enable

Once done, you are allowed to use a VS-IP within a SNAT pool.

Thank you!

 

Regards,
Stefan :)

 

    Anthony_E
    Staff
    Anthony_E
    Staff
    October 11, 2023

    Thank you Stefan :)!

    Best Regards
    Terms & ConditionsAccessibility statement