Forum Discussion
swo0sh_gt_13163
Altostratus
Jun 23, 2014Usecase for Reject Virtual server?
Hello Folks,
Can someone please help me in which case shall we use Reject VS?
In most of the implementation, BIG-IP deployed behind a permitter firewall. If Firewall receives any uninvited...
Kevin_Stewart
Employee
Jun 24, 2014If I may add, the LTM is a default deny device. You don't need an all-inclusive filter rule applied to say "reject if not matching an allowed IP", because that already exists in the absence of anything at all. If you don't actively create a listener - a virtual server or NAT - then the LTM won't respond to any requests. The TM.RejectUnmatched option is interesting in that it allows you to choose how packets are rejected. Set to true and LTM sends a RST. Set to false and LTM drops the request packet. In either case the request is denied.
Recent Discussions
Related Content
DevCentral Quicklinks
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com
Discover DevCentral Connects