Forum Discussion

sysadmin_2015_2

Nimbostratus

Aug 14, 2017

F5 Big-IP - Firewall

Hello, The F5 Big-IP Load balancer handles several of our different applications. The network team needs to give access to specific application that is managed by the Big-IP to a locked down se...

Cirrostratus

Aug 14, 2017

Hello,

It depends on the configuration of your Virtual Servers, specifically the SNAT feature. If enabled on VSs, the F5 will replace the client IP address by it's own IP addr. This is a very common configuration (to avoid asymetric routing).

So first you will need to check with the Load Balancer team how it is configured, depending on that you will know if you need to configure the ACL or not

Hope it helps,

Regards

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

F5 Big-IP - Firewall

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Checking for X-Forwarded-For against an Address Data-Group

SSL Bridging and FQDN rewrite Policy

Cisco TACACS+ Config on ISE LTM Pair

iRule causing requests to be duplicated (sometimes)

How can I get started with iCall

Related Content

Introduction to F5 BIG-IP Advanced Firewall Manager (AFM)

Automating Certificate Management on F5 BIG-IP

Introducing the F5 AI Assistant for BIG-IP

BIG-IP Next Edge Firewall CNF for Edge workloads

F5 BIG-IP Multi-Site Dashboard

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS