Forum Discussion

Nimbostratus

Oct 17, 2024

Using the WAF instead of a jump server for ssh-tunneling?

Hello everyone, This is how it works at the moment: We go from server A, in the internal network, with a public IP via ssh to a jump server in the DMZ. From the jump server we then go on to se...

Employee

Oct 17, 2024

WAF is going to be used for HTTP traffic. If you're simply looking for a connectivity option without security, then you can configure a SSH Virtual Server and you pool member would be the server in the DMZ. If you're looking for SSH security, then you might consider adding on AFM which can do SSH protocol inspection amongst other options. Secure SSH traffic with the SSH Proxy (f5.com)

If no security is needed, you can restrict source IP;s on the LTM VS your configuring to access the DMZ jump server.

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Using the WAF instead of a jump server for ssh-tunneling?

Security Best Practices for F5 Products

F5 AppWorld 2026 Registration - early bird pricing.

Kostas Injeyan - October 2025 Featured Member

Recent Discussions

APM VPN LDAP POOL can't contact ldap server.

LTM issue Openning new web browser tab

Issues Integrating Compass Mobile Tree with F5

SSO login for APM Profiles

Can F5 restrict the file types transferred via FTP?

Related Content

F5 MCP(Model Context Protocol) Server

Securing MCP Servers with F5 Distributed Cloud WAF

SSH access through App Tunnel

Syslog virtual server

F5 Distributed Cloud Origin Server Subset Rules

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS