ADC

Configure RNAT with LLB

You can configure an LLB setup for reverse network address translation (RNAT) for outbound traffic. It ensures that the return network traffic for a specific flow is routed through the same path. First configure basic LLB, as described in Configuring a Basic LLB Setup, and then configure RNAT as described in Configure RNAT. Then enable “use subnet IP (USNIP)” mode.

In the following diagram, the Citrix ADC appliance uses LLB to route outbound traffic to different links. During the RNAT operation, the ADC appliance replaces the source IP addresses of the outbound traffic with the public NAT IP address (198.141.23.1) to route the traffic through ISP-1. Similarly, the ADC appliance replaces the source IP addresses with 198.140.23.1 to route the traffic through ISP-2.

RNAT with LLB

To add SNIPs for ISP routers by using the CLI

At the command prompt, type:

add NS IP <subnet of first ISP in the IP router> <subnet mask> -type SNIP

add NS IP <subnet of second ISP in the IP router> <subnet mask> -type SNIP
<!--NeedCopy-->

Example:

add ns ip 198.140.23.1 255.255.255.0 -type snip

add ns ip 198.141.23.1 255.255.255.0 -type snip
<!--NeedCopy-->

To configure RNAT by using the CLI

At the command prompt, type:

add rnat <name> (<network> | (<aclname> [-redirectPort <port>]))

bind rnat <name> <natIP>@ …

show rnat <name>
<!--NeedCopy-->

Example:

add rnat RNAT-1 192.0.2.0 255.255.255.0
bind rnat RNAT-1 -natIP 198.140.23.1
bind rnat RNAT-1 -natIP 198.141.23.1

> show rnat RNAT-1
    1) RNAT Name: RNAT-1     Network: 192.0.2.0      Netmask: 255.255.255.0     Traffic Domain: 0
        UseProxyPort: ENABLED

        NatIP: 198.140.23.1
        NatIP: 198.141.23.1
<!--NeedCopy-->

To configure RNAT by using the GUI

  1. Navigate to System > Network > NATs.
  2. On the RNAT tab, click Configure RNAT.
  3. Specify the network on which to perform RNAT.

Note

You can also configure RNAT by using Access Control Lists (ACLs). Refer Configuring RNAT for details.

To enable Use Subnet IP mode by using the CLI

At the command prompt, type:

enable ns mode USNIP

show ns mode
<!--NeedCopy-->

Example:

enable ns mode USNIP

show ns mode
        Mode                           Acronym              Status
        -------                        -------              ------
 1)     Fast Ramp                      FR                   ON
 2)     ….
 8)     Use Subnet IP                  USNIP                ON
 9)     …
<!--NeedCopy-->

To enable Use Subnet IP mode by using the GUI

  1. Navigate to System > Settings and, under Modes and Features, click Configure Modes.
  2. In the Configure Modes dialog box, select Use Subnet IP, and then click OK.
Configure RNAT with LLB