Address list in Virtual server

Question

Hi,i have a 20+ virtual servers configured with 80percent of them is used for 443 service and others for 22 and other custom ports/service.I want to know how i can use the Address list in virtual server to optimize the operational tasks like manageing ssl client certificates etc. however, at the same time since some VS uses policies and other custom settings is it possible to make use of one virtual server with address range for 443 services and reduce the numbers of VS's, same for other services.Also want to know if we adopt this apporach what are the challenges from Tshoot perspective one can face.Please guide.

shaikhzaid · Answer

Thanks for the reply.Yes, i understood whilst reading the document. SInce we have several of the VS having customised policies to send to specific pool members so for those VS am keeping it separate.Including only those VS which is having only asm policies and other settings similar.

mohamed_ahmed_kansoh · Answer

Hi&nbsp;shaikhzaid&nbsp;,&nbsp;please Review this Article about address lists with Virtual servers :&nbsp;https://techdocs.f5.com/kb/en-us/products/big-ip_ltm/manuals/product/big-ip-ltm-virtual-servers-multiple-ip-port-14-1-0/01.htmlI think it will not that hard in troubleshooting if you use it , but you should care about pool/pool members which this list of virtual servers forward traffic to , I mean you have to make sure your traffic flow for each virtual server ip in the address list.But this is a good customization , it's good to test it first.

shaikhzaid · Answer

Mohamed_Ahmed_Kansoh&nbsp;Thanks for the response.I have gone through the document and seems to be simple. I will apply it in our developement F5 node first.Also the policies and profiles specific to each VS, need to have a separate VS.Cordial.

mohamed_ahmed_kansoh · Answer

Hi&nbsp;shaikhzaid&nbsp;,&nbsp;If you want to customize any profile you have to create a separte virtual server and add this customized profile to it.&nbsp;Let me explain more.&nbsp;If you have 100 Virtual servers have the same characteristics and properities you can rely on Address list ,&nbsp;But If you have 100 Virtual servers but with different&nbsp;characteristics and properities such as adding X-Forwarded-For or raising idle timeout values in TCP and ...etc of customizations you have to add them separetly.

Forum Discussion

Address list in Virtual server

4 Replies

Recent Discussions

Geo Fence in ASM through irule for URI

Client certificate Authentication - open multiple tabs

google autenticator broken barcode

Chrome V 124+ on MacOS - Virtual Server Access Issue

vulnerabilities (CVE-2020-36363), CVE-2016-0736,CVE-2019-6593-FOR VERSION BIGIP LTM-16.1.4

Related Content

Check a Virtual Server's SSL Status

Virtual Server graphical App for F5 LTM

Virtual address from address list is down after assignment to VS

Reviewing vulnerability scanner results for an Access Policy Manager (APM) protected Virtual Server

Integrating SSL Orchestrator with Fortinet FortiGate Virtual Edition as a Virtual Wire