Forum Discussion

Nimbostratus

Nov 02, 2007

OneConnect: Security Consideration

The following description is in SOL6997. "The BIG-IP LTM applies the source mask to the request, finds an eligible TCP connection, and aggregates the request from client B over the existing...

config

design

Deb_Allen_18

Historic F5 Account

Dec 20, 2007

Is it to be meant the use of the server-side connection simultaneously by client A and client B?yes, that is correct

I want to separate the user traffics for security reasons. Should not I use OneConnect?

Source mask cannot be used as a solution, because there is Reverse Proxy on the client side and source IP has been translated by PAT. If that's the case, I'd say you should disable OneConnect.

/deb

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

OneConnect: Security Consideration

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

After upgrading from PeopleTools 8.59.11 to 8.61.11 F5 APM is not rewriting the internal URLs

F5 BIG IP laboratory license

F5 mssql health monitor failing

How can I get started with iCall

Connection Rest f5

Related Content

Quarterly Security Notification October 2025

F5 Distributed Cloud (XC) Custom Routes: Capabilities, Limitations, and Key Design Considerations

Implementing SSL Orchestrator - High Level Considerations

Implementing SSL Orchestrator - Certificate Considerations

Positive Security vs. Negative Security: A Comparison Using F5's Security Portfolio

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS