cancel
Showing results for 
Search instead for 
Did you mean: 

Block internal server from outbound access

Stumpknocker
Nimbostratus
Nimbostratus

What would be the best recommended way to block a single internal server sitting behind a Big-IP from going thru it to access the Internet? I have a forwarding Virtual server for all internal resources to access external sites. Could this be done with an iRule or am I thinking too complicated? Thanks!

1 REPLY 1

No need for an irule for this. You can use Packet Filter in the network menu. Make it default to allow all and add a specific rule to reject the single server.

 

https://techdocs.f5.com/kb/en-us/products/big-ip_ltm/manuals/product/tmos-implementations-13-0-0/8.h...