Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

CSM: Bridged mode, client-side MSFC -- require SNAT for server-VIP?

When a CSM is deployed in a bridged mode configuration with the MSFC located toward the client-side, is source NAT still required for server-side server to VIP communications?

Or does the CSM automatically snoop/intercept the return traffic and direct it through itself?

It is not clear from the CSM 4.2 configuration guide whether or not the CSM will intercept the traffic, or if a nat-pool and SNAT is still required.

1 REPLY
Cisco Employee

Re: CSM: Bridged mode, client-side MSFC -- require SNAT for serv

if the traffic crosses the CSM it will be intercepted whatever the mode [briding or routing].

So, if the default gateway of the servers is the MSFC, all traffic sent from server to client via the gateway will go accross the CSM and therefore it will be intercepted.

However, if you want server to server communication through the VIP, you still need source nating as the traffic from server to server in the same subnet will not require the use of the gateway and will therefore still bypass the CSM.

Regards,

gilles.

Thanks for rating this answer.

123
Views
5
Helpful
1
Replies
CreatePlease to create content