I want to load balance traffic to a VIP based on client source address. Here is what I had in mind:

access-list special-25 extended permit tcp host 10.20.138.18 host 10.20.96.19 eq 25

access-list special-25 extended permit tcp host 10.20.138.30 host 10.20.96.19 eq 25

access-list special-25 extended permit tcp host 10.20.138.40 host 10.20.96.19 eq 25

access-list special-25 extended permit tcp host 10.20.254.88 host 10.20.96.19 eq 25

access-list internal-25 extended permit tcp 10.20.0.0 0.0.255.255 host 10.20.96.19 eq 25

access-list internet-25 extended permit tcp any host 10.20.96.19 eq 25

class-map match-any INTERNET-MAIL

2 match access-list internet-25

class-map match-any INTERNAL-MAIL

2 match access-list internal-25

class-map match-any SPECIAL-MAIL

2 match access-list special-25

class-map match-all VIP-MAILGATE-25

description MAILGATE INTERNAL 25

2 match virtual-address 10.20.96.19 tcp eq 25

serverfarm host mailgate-zero

description INTERNET MAIL

failaction purge

rserver mailgate-1

rserver mailgate-2

rserver mailgate-3

rserver mailgate-4

serverfarm host mailgate-one

description INTERNAL MAIL

failaction purge

rserver mailgate-5

rserver mailgate-6

serverfarm host mailgate-two

description I DON'T KNOW MAIL

failaction purge

rserver mailgate-8

policy-map type loadbalance first-match MAILGATE-POLICY

class SPECIAL-MAIL

serverfarm mailgate-two

class INTERNAL-MAIL

serverfarm mailgate-one

class INTERNET-MAIL

serverfarm mailgate-zero

policy-map multi-match CLIENT-VIPS

class VIP-MAILGATE-25

loadbalance vip inservice

loadbalance policy MAILGATE-POLICY

loadbalance vip icmp-reply active

The problem with this design is the policy-map MAILGATE-POLICY won't accept anything but the "class-default".

Any ideas how can I make this work?

Thanks,

Milo