SPECIAL DevCentral Connects - on Basic iControl Security

LiefZimmerman · ‎11-May-2022

Basic iControl Security - DevCentral Connects

Join @JRahm and @buulam on May 12, 2022 at 8AM Pacific as they look at some common questions for people who are getting to know the BIG-IP iControl API.

How To:

* find out if you're using iControl

* verify what queries are being run

* Review the iControl logs and

* restrict access to iControl

Join our DevCentral Connects group to see show notes and get links to relevant articles.

buulam · ‎12-May-2022

The show follow up thread with all of the notes is up!

https://community.f5.com/t5/dcc-forum/may-12-devcentral-connects-pop-up-show-basic-icontrol-security...

We're there to answer your questions and F5 SIRT can tackle anything specific to the CVE.

MACTEP · ‎12-May-2022

How to secure iControl on single-nic F5 VE?

ifconfig shows that it has both mgmt and eth0 interfaces, but only eth0 has IP address attached and as AWS instance it only has one NIC.

buulam · ‎12-May-2022

Hi @MACTEP there's some steps here for AWS to lock down access with a Network Security Group: https://clouddocs.f5.com/cloud/public/v1/aws/AWS_singleNIC.html

Be sure to take note of what port the management is running on when you are configuring this (steps in the link for showing port)