Forum Discussion
APM admin GUI/ssh over APM network access
Hi,
I m trying to access APM admin access of mgmt IP over GUI and ssh over network access terminating on same APM. In tcpdump I see below packet
Client ----> APM mgmt IP :443. TCP Syn APM self-IP -----> APM mgmt IP : 443. TCP Syn
But no Syn/ack from APM mgmt IP . All firewall rules are in place.
What could be wrong? Hope I'm trying right way. If not, pls suggest how to do this
Thanks,
Sachin
1 Reply
- Kevin_Stewart
Employee
That is actually a "feature", that you can't access the management interface through an SSLVPN connection on the same APM. To get around this, create a simple TCP VIP with client and server SSL profiles applied and this iRule:
when CLIENT_ACCEPTED { node 127.0.0.1 443 }You would then access the management interface externally via this virtual server. I would also make the IP of this VIP something on your (non-routable) lease pool subnet so that only clients inside an established VPN can talk to it.
Help guide the future of your DevCentral Community!
What tools do you use to collaborate? (1min - anonymous)Recent Discussions
Related Content
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com