Forum Discussion

Nimbostratus

Oct 17, 2024

Using the WAF instead of a jump server for ssh-tunneling?

Hello everyone, This is how it works at the moment: We go from server A, in the internal network, with a public IP via ssh to a jump server in the DMZ. From the jump server we then go on to se...

Employee

Oct 17, 2024

WAF is going to be used for HTTP traffic. If you're simply looking for a connectivity option without security, then you can configure a SSH Virtual Server and you pool member would be the server in the DMZ. If you're looking for SSH security, then you might consider adding on AFM which can do SSH protocol inspection amongst other options. Secure SSH traffic with the SSH Proxy (f5.com)

If no security is needed, you can restrict source IP;s on the LTM VS your configuring to access the DMZ jump server.

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Using the WAF instead of a jump server for ssh-tunneling?

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

Recommendation for Adv. Lab

Cloud Apps Protection

Illigal Parameter addition as custom signature set wanted to Unblock

CPU load when Prometheus is scraping metrics from F5 BIG-IP LTM

Connection Rate Limit with log output

Related Content

F5 MCP(Model Context Protocol) Server

SSH access through App Tunnel

Securing MCP Servers with F5 Distributed Cloud WAF

F5 Distributed Cloud Origin Server Subset Rules

BIG-IP High Availability with Azure Route Server

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS