Forum Discussion
Piotr_Lewandows
Feb 16, 2018Altostratus
AFM Firewall and NAT policies - how to implement
Hi,
I need to implement policies for few hundreds src IP, dst IP SNAT and NAT combinations. Something like that, all related to 13.1.0.1:
For given dst IP:
Allow traffic from given se...
Peter_Mills_697
Aug 31, 2018Historic F5 Account
AFM NAT(CGNAT) is applied after AFM Firewall rules because it is pointless spending time processing traffic which will be dropped anyway. It seems popular to use a wildcard Virtual Server and attach an AFM policy to it containing a long set of AFM rules.
- dragonflymrAug 31, 2018Cirrostratus
Hi,
Thanks for answer. Probably you are right, but it some cases wildcard approach do not work, especially when rules are attached to non wildcard VS.
Piotr
Recent Discussions
Related Content
DevCentral Quicklinks
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com
Discover DevCentral Connects