GUI admin access to F5 LTM

Question

HI,&nbsp;
 &nbsp;
i want restrict admin gui https access to F5 LTM to certian ip address .How i can do this .&nbsp;
 &nbsp;
I created packet filter but whre should i apply that&nbsp;

what_lies_bene1 · Answer

To restrict HTTPS access (to the Configuration Utility), use the following tmsh command: [tmsh] modify sys httpd allow replace-all-with { 10.11.*.* } to replace the allow list entirely or [tmsh] modify sys httpd allow add { 10.11.*.* } to add an address or network to it.  
&nbsp;  
&nbsp; There is no Configuration Utility method for restricting Configuration Utility access; however you can now apply firewall rules if AFM is installed.

dirtycache · Answer

Ideally you should manage the BIG-IP via it's management port interface, connected to a dedicated management VLAN with appropriate ACLs.  Otherwise, the advice above is spot on for creating an ACL for httpd.

gsharri · Answer

Note that the packet filters (Network&gt;Packet Filters) apply only to vlan traffic not the management interface. AFM (if available) rules can be applied directly to the management interface. Or use tmsh to restrict httpd as outlined previously.&nbsp;

Forum Discussion

GUI admin access to F5 LTM

3 Replies

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

How can I get started with iCall

Connection Rest f5

Kubernetes cert-manager + LetsEncrypt + F5

The GSLB pool is providing an incorrect IP to end users

Unable to ping from some self ip on Velos

Related Content

F5 ASM/AWAF Preventing unauthorized users accessing admin path using iRule script

Unable to login on F5 GUI using default admin/admin username & password.

Local login failed to access gui

Unable to access GUI

Introducing F5 WAF for NGINX with Intuitive GUI in NGINX One Console and NGINX Instance Manager

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS