Forum Discussion
Is it possible to add domain based VPN routes instead of IPs?
I want to enable APM policy that will route my company domain traffic( for e.g. site.company.com, app.company.com etc) instead of putting static IPs in the LAN address space? This way, I don't need to maintain all company public application IPs in the VPN settings.
I haven't tried it myself, but you have the option under Client Settings to use "DNS Address Space" (I'm using v. 16.1).
You are talking about split tunnel from what I understand and split tunnel based on FQDN and not ip address (on your computer this will be seen ip routes that send specific traffic to the tunnel interface). The short answer is yes as this has been availabe in F5 APM for a long time. Look at the links below:
https://support.f5.com/csp/article/K55104964
https://support.f5.com/csp/article/K03430467
https://support.f5.com/csp/article/K49720803#link_07
Recent Discussions
Related Content
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com