Help
Technical Forum
Ask questions. Discover Answers.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Technical Forum Quicklinks: No Replies | Active-Not Solved | Recent Solutions

Is it possible to add domain based VPN routes instead of IPs?

shashe
Cirrus
Cirrus

‎03-Jan-2023 15:10

I want to enable APM policy that will route my company domain traffic( for e.g. site.company.com, app.company.com etc) instead of putting static IPs in the LAN address space? This way, I don't need to maintain all company public application  IPs in the VPN settings. 

Labels:
0 Kudos
3 REPLIES 3

shashe
Cirrus
Cirrus
In response to devian258

‎04-Jan-2023 06:29

can I have the FQDNs instead of CIDRs in the VPN tunnel scope?

0 Kudos

lnxgeek
MVP
MVP

‎07-Jan-2023 07:47

I haven't tried it myself, but you have the option under Client Settings to use "DNS Address Space" (I'm using v. 16.1).

 

0 Kudos

Nikoolayy1
MVP
MVP

‎07-Jan-2023 08:33 - edited ‎07-Jan-2023 08:53

You are talking about split tunnel from what I understand and split tunnel based on FQDN and not ip address (on your computer this will be seen ip routes that send specific traffic to the tunnel interface). The short answer is yes as this has been availabe in F5 APM for a long time. Look at the links below:

https://support.f5.com/csp/article/K55104964

https://support.f5.com/csp/article/K03430467

https://support.f5.com/csp/article/K49720803#link_07

 

 

0 Kudos
Copyright © 2023 Khoros, LLC