Forum Discussion

Nimbostratus

Apr 24, 2006

auto init tunnel based on connectivity?

Is there any support in the win32client to actually force the tunnel if some criteria is true (in my case, machine is not present on internal network) to enforce policy that machine is only allowed to...

BIG-IP Access Policy Manager (APM)

remote access

security

Alexander_Jones

Nimbostratus

Aug 29, 2007

We did this yes, but not within the f5 product api:s. Basically we coded a small app that registered with the NLA service to get updates when connectivity changes occur on the machine. Based on this and some custom logic here we trigger the app to start vpn. So this would be generic to any vpn solution really it has nothing to do with F5 only one demand and that is that you are able to start vpnclient in the way you want (this looks different in different software, some will allow a pass through auth based on a smartcard so its invisible to the user, others will pop up some sort of challenge, your mileage will vary).

/Alex

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

auto init tunnel based on connectivity?

AppWorld Berlin iRules Contest!

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

Recent Discussions

Changes to DO and AS3 GitHub - no longer monitored

How to Verify config before loading to F5

Logical Disk Full to Migrate rSeries

HSL - Local TimeZone - in syslog server

VIP control across data centers - how to ensure only 1 VIP is up at a time?

Related Content

GRE Tunnel Issue

Tunneling with HTTP CONNECT

SSL VPN Split Tunneling and Office 365

Generic iRule based on datagroup parsing

DNS Tunnel Mitigation v2

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS