Forum Discussion

Lucas_Thompson_'s avatar
Lucas_Thompson_
Historic F5 Account
Dec 20, 2016

For security in Portal Access, we generally recommend against proxying the internet, so keep it to internal applications using the split settings in the rewrite profile, so that you're only rewriting your domain.

 

So:

 

Split, ACLs. Those are probably the two biggest concerns.

 

  • AndOs's avatar
    AndOs
    Icon for Cirrostratus rankCirrostratus
    Dec 22, 2016

    Thanks!

     

    Are URIs compared first against the rewrite and bypass list and then ACLs? Or how does the split setting in rewrite profile work together with ACLs?

     

  • Lucas_Thompson_'s avatar
    Lucas_Thompson_
    Historic F5 Account
    Dec 22, 2016

    Split settings are not relevant to ACLs except that any non-bypass content should be allowed by ACLs.

     

    ACLs control access once the user tries to request content, allow or deny.

     

    Split-settings control what rewrite tells the user about where the content is, either local or remote.