Forum Discussion
F5 APM: Traffic between two ssl vpn clients
Hello,
is there a way to drop traffic between two ssl vpn users? right now when 2 or more users are connected, there is nothing to prevent them from sharing files or communicating with each other...
we would like to create sort of "private vlan" or isolation between clients...
thanks
- Brad_ParkerCirrus
Here is the SOL for this. https://support.f5.com/kb/en-us/solutions/public/13000/500/sol13515.html?sr=36851029
- Lucas_Thompson_Historic F5 Account
There is no built-in functionality for this. For your case however, if you only want to drop traffic, define a Virtual Server with the appropriate (the leasepool subnet IPs) Source and Destination addresses with a dummy "blackhole" pool, or use an irule on this virtual to drop the traffic.
Currently there is an enhancement request to allow built-in functionality of APM ACLs with VPN <-> VPN connections, the ID number is 366149. It would be helpful to express your desire for this functionality by opening a ticket with Support and mentioning this ID number.
There is also a related ACL enhancement request ID 532604 to allow ACLs to operate in LAN -> VPN connections.
Recent Discussions
Related Content
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com