application
9 TopicsBlock requests from web browser and only allow from clients application in ASM
Dear Community, I have a requirment to allow email application traffic initialated from email clinets i.e outlook, boxer only and block all traffic initiated from web browsers. Please inform how we can accomplish this using ASM. Best Regards1.4KViews0likes2CommentsF5 and its gateway
Hi I made basic F5 configuration based on F5 protocol. But I notice there is not gateway config towards outside connection. For example, the virtual server in F5 send message out via its neighbor device. We do not need to define the neighbor device’s ip address at the F5. If so, F5 find the gateway through the incoming traffic, Is this correct? Thanks1KViews0likes9CommentsSecurity Policy not syncing between devices
Greetings, A few days ago, I had to perform a security update and observed a discrepancy in the synchronization of security policies between the two high-availability (HA) devices. To illustrate, a security policy that appeared transparent on the active device was found to be blocking when the standby device took over. The disparity extended beyond just the enforcement mode; even the rules differed, resulting in the unintended blocking of legitimate traffic. I mention that "Application Security Synchronization" is enable for the device group. Software version is:15.1.10.2Solved698Views0likes3CommentsWhitelisting access to URLs based on specific IPs
Dear Community, I have a requrirment to allow access to a specific URI path from few public IPs & all private IPs; remaining public IPs should not be able to access this specific URI path. All other URI paths should be abe to be accessed by any IP whether private or public. Requirement Example: "https://abc.com/good/evening/happy/life" should be able to be accessed by four public IPs only & private IPs. and all other URIs paths than above should be accessable by all public IPs & private IPs. https://abc.com/*499Views0likes4CommentsiControl with Java - Retrieve List of Virtual Servers does not include Applications
Hi, i connect to the F5 using the Java Wrapper API; Now, when i get the list of Virtual-Servers via iControlInterfaces.getLocalLBVirtualServer().get_list() it only returns the virtual servers that are not created with an application (i.e. with the f5.microsoft_exchange_2010_2013_cas template). I could not find any way to further "open" the list; How can i retrieve these too? Many thanks in advance! Rene418Views0likes3CommentsApplication Logged Out when Idle . . .
Hey friends, I have a problem .... when we access application using a server directly, it is stabil (NOT LOGGED OUT), but when accessing it using the F5 application and idle, the application back to the login menu (LOGGED OUT), but if we click on the menu quickly (INTENS), is not logged OUT. We have already setting an "indefine" idle time out in tcp profile, and we have also tried giving an idle time out of more than 5 minutes, but the application is still logged out when we accessed less than 1 minute if idle. AnyOne Help for this case??399Views0likes3CommentsIRULES FOR REDIRECTING TRAFFIC BASED ON DYNAMIC CONTENT FOR APPLICATION
I need to redirect traffic for an application, on 10.184.1.191 (VIP) to any of the two servers ,10.184.1.71:9443, or 10.184.1.49:9443. However, the search string is based on paths. HTTP:80 and HTTPS:443, path /oauth2/* => https: 10.184.1.71:9443 & 10.184.1.49:9443 HTTP:80 and HTTPS:443, path /authenticationendpoint/* => https: 10.184.1.71:9443 & 10.184.1.49:9443 HTTP:80 and HTTPS:443, path /wso2/* => https: 10.184.1.71:9443 & 10.184.1.49:9443 HTTP:80 and HTTPS:443, path /services/* => https: 10.184.1.71:9443 & 10.184.1.49:9443. The end servers have dynamic content after the Ip:port combination, example https://10.184.1.71:9443/authenticationendpoint/login.do?client_id=49i1A1Rd6ErNhFtgAuY1b1ybWNsa&commonAuthCallerPath=%2Foauth2%2Fauthorize&forceAuth=false&passiveAuth=false&redirect_uri=http%3A%2F%2F10.184.1.71%3A9086%2Fclm-ui%2F%23%2Fauthcode&response_type=code&scope=openid&state=openid&tenantDomain=carbon.super&sessionDataKey=94da32df-4304-4bd7-a709-07e6eb14f4fb&relyingParty=49i1A1Rd6ErNhFtgAuY1b1ybWNsa&type=oidc&sp=clm-mtnn-phI&isSaaSApp=false&authenticators=IPAuthenticator:LOCAL. How do i write an irule in this case231Views0likes3CommentsCAN F5 LTM BE USED TO SECURELY PUBLISH WEB APPLICATIONS?
Can the F5 LTM be used to securely publish web applications in a DC,(TMG REPLACEMENT) in case where an organization is moving towards discontinuing TMG? I know SWG is the best replacement for TMG,but,how can it be done if the only license is LTM? Thanks213Views0likes2CommentsHigh CPU utilization (100%).
I observed high CPU utilization (100%) on F5 device, resource provision ASM nominal. I checked the client-side throughput and server-side throughput both are normal but found management interface throughput is very high and what i noticed this is happening in same time period for last 30 days. What could be the reason for this spike. Many thanks in advanced for your time and consideration.120Views0likes14Comments