F5 LTM AZURE MFA PORTAL PAGE

I've recently deployed Azure' on Prem solution with a set of servers acting as the portal page.

 

I've front ended the apps with F5 to add some Irules and caching profiles.

 

There is a section in MFA, where you can bypass a set of IPs from the MFA.

 

Basically I want to bypass any internal Ips and prompt any external IPs.

 

Since I'm using an HTTP profile with Auto SNAT, the source IP always becomes the IP of the F5 self IP address.

 

Is there a way to pass the original client ip?

 

I don't need it in the log, but the actual source ip.

 

Would a HTTP pass through work?