Intranet Videos hosted on AWS Cloudfront connected via F5 APM Edge Client / Split Tunnel

Hi All,

 

We use the F5 APM/Edge client comibination to connect Apple iPads/iPhones into our corporate environment, specifically to our Intranet page in this scenario. We have it configured for any DNS request for our corporate domain to open the SSL tunnel, get the DNS response from our internal DNS servers and a route down the tunnel for most of our internal F5 space.

 

On our Intranet page, we have videos hosted by an external 3rd party which used the Amazon Cloudfront CDN environment, which is all very dynamic in its address range. Our proxy IP range is whitelisted on there side so only traffic going via our proxies can get access to it. What I am trying to achieve is to get these videos also working on the Apple devices.

 

My normal scenario for resolving issues like this is to confirm the IP address for a specific site and tunnel it down the VPN and u-turn it back out the F5 and add a new IP to the whitelist. The problem here is AWS IP ranges are pretty dynamic and its not the best solution I don't believe.

 

Does anyone know of a way I can resolve this ?

 

Daniel