Forum Discussion

Nimbostratus

Feb 01, 2011

Configuration management

I would like to restrict configuration changes to a single LTM unit in a HA pair. Is this possible and if so could anyone point me in the right direction on where to start? Thanks

config

design

hooleylist

Cirrostratus

Feb 01, 2011

To restrict config changes to the active unit only, you could enforce an ACL that only allows access to the floating self IP(s) on the VLAN(s) you want admin traffic on. This wouldn't account for direct access to the management port, but you could optionally lock that down to specific source networks.

Aaron

Recent Discussions

ports are showing open on online scanning tool
Dec 26, 2024
Pooja_Varekar208
Upgrade F5 BIGIP
Dec 26, 2024
Ollie_Alderson
DNS HM Probe issue
Dec 26, 2024
mustansirt
Is XFF a must for ASM WAF DoS
Dec 26, 2024
Emil_Tr
Switch ssl profile based on weak cipher detection via IRULE
Dec 26, 2024
aliasgar215

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Configuration management

Recent Discussions

ports are showing open on online scanning tool

Upgrade F5 BIGIP

DNS HM Probe issue

Is XFF a must for ASM WAF DoS

Switch ssl profile based on weak cipher detection via IRULE

Related Content

NGINX Management Suite API Connectivity Manager - Modern API driven Applications

Re: Management Certificate

Configuring Unified Bot Defense with BIG-IQ Centralized Management

Manage F5 BIG-IP Advanced WAF Policies with Terraform (Part 4 - Policy Lifecycle management)

Re: Configuring Smart Card Authentication to the BIG-IP Traffic Management User Interface (TMUI) usi

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS