Block internal server from outbound access

Question

What would be the best recommended way to block a single internal server sitting behind a Big-IP from going thru it to access the Internet? I have a forwarding Virtual server for all internal resources to access external sites. Could this be done with an iRule or am I thinking too complicated? Thanks!

amine_kadimi · Answer

No need for an irule for this. You can use Packet Filter in the network menu. Make it default to allow all and add a specific rule to reject the single server.

https://techdocs.f5.com/kb/en-us/products/big-ip_ltm/manuals/product/tmos-implementations-13-0-0/8.html

Forum Discussion

Block internal server from outbound access

1 Reply

Recent Discussions

F5 loadbalancer not working

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

Pricing when used with aws waf

F5 terminal - help to run commands - disk space full

import live updates from version x to version y

Related Content

2 internal server vlans

After applied ASM Policy to Virtual Server, connections will reset with Internal error in log

Use BIG-IP LTM Virtual Server & iRule for an internal "What's My IP" website

ADFS WAP servers failed to establish trust with ADFS 2019 servers using internal vip

Behavior of outbound DNS query from LTM behavior