For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Ahmed_Galal's avatar
Ahmed_Galal
Icon for Cirrostratus rankCirrostratus
Nov 03, 2019

Exchange iAPP

Hi All, Good Morning.   i have deployed Exchange iAPP f5.microsoft_exchange_2010_2013_cas.v1.6.2 but i have 2 issues.   1- i need to allow ECP only from internal IP addresses. 2- i cannot...
application delivery
ASM Advanced WAF
iApps
security
Simon_Blakely's avatar
Simon_Blakely
Icon for Employee rankEmployee
Nov 03, 2019

Neither of those features can be configured through the iApp template.

 

You will need to take the iApp out of Strictness and make the necessary manual changes.

 

Alternatively, you could try using the process described in

 

K13315545:  Configuring a BIG-IP ASM virtual server to protect a BIG-IP APM login page with brute force prevention

 

to apply a layered virtual with ASM/source IP filtering prior to passing the traffic to the iApp-configured virtual. However, I have not validated that this will work, but it seems like a good avenue to try. I'll also note that some of the Exchange requests (RPC calls, for example) are not suitable for ASM evaluation, and should bypass ASM.