Forum Discussion

Cirrus

Feb 04, 2016

LTM+APM SSO only for designated Subnets

Hi, we have a Problem we have configured a virtual server with an access policy and NTLM-SSO. We use the authentication only for users of pubic subnets. If a user comes out of a private subnet w...

BIG-IP

BIG-IP Access Policy Manager (APM)

Cirrus

Feb 05, 2016

Hi and thanks to all 🙂

You brought me to the right way to solve this 🙂

I had to modify the code of Stanislas a litte bit but for this it works and my logs are not flooded anymore with useless entries!

Code:     
when HTTP_REQUEST {
if {  [IP::addr [IP::local_addr] equals "164.3.0.0/16"] || [IP::addr [IP::local_addr] equals "172.16.0.0/12"] || [IP::addr [IP::local_addr] equals "192.168.0.0/16"] || [IP::addr [IP::local_addr] equals "10.0.0.0/8"]} {
    WEBSSO::disable
    return
}
}

Thanks Martin

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

LTM+APM SSO only for designated Subnets

Recent Discussions

Background Tasks

APM with EntraID as idP / request signed

Should config via cli rather than gui?

APM Modern Customization - modify Header in user-common.js and form in user-logon.js

Which process is consuming higher CPU

Related Content

Using Client Subnet in DNS Requests

Verified Design: SSL Orchestrator with Palo Alto NGFW Virtual Edition-Part 1

Verified Design: SSL Orchestrator with McAfee Web Gateway-Part 1

F5 BIG-IP in Cisco ACI Multi-Site and Multi-Pod - Design Options

GitLab Vulnerability, Secure by Design Pledge, & Near Miss Supply Chain Attack

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS