Forum Discussion
Dave9348_208130
Nimbostratus
NimbostratusF5 IP blocked in SFTP due to natting
As is expected we get bots trying to connect to out sftp server. Since the source address is natted to F5 IP (also natted in FW). Because of the bad login attempts the F5 IP gets blocked which causes legit clients to also get blocked. I cannot find if/how there is a way to get the source IP through to the server in the sftp pool.
1 Reply
- boneyard
MVP
i don't believe you can, HTTP is pretty much an exception with the X-Forwarded-For header, most other protocols don't offer such a way to relay the original IP. if you are just doing source NAT on your firewall the same would happen for HTTP.
an option is not to do source natting on f5 and / or firewall.
