Forum Discussion

Nimbostratus

Nov 18, 2009

Port ACL

Hello all, I am having an issue with Port ACL Irules: Issue: We have 6 internet links and hundreds of virtual servers running on multiple ports. As we are...

Cirrostratus

Nov 18, 2009

The short answer is not with a VIP configuration change or iRule. If you define a virtual server LTM will answer a TCP handshake on the defined port. If the port is 0, then LTM will answer a TCP handshake on all ports.

If you need to prevent a TCP handshake on specific ports or allow one only on specific ports, you should be able to use packet filters or an upstream firewall. It's always a good practice to have a firewall between LTM and any untrusted network.

Aaron

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Port ACL

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

After upgrading from PeopleTools 8.59.11 to 8.61.11 F5 APM is not rewriting the internal URLs

F5 BIG IP laboratory license

F5 mssql health monitor failing

How can I get started with iCall

Connection Rest f5

Related Content

Protect your applications using F5’s Distributed Cloud and Fast ACL’s

APM Security: Protecting Internal Resources Using ACLs

How to change ACL forbidden page?

SFP Port LEDs Blinking Yellow

Three Ways to Specify Multiple Ports on a Virtual Server

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS