Bill_Callahan_8
Oct 07, 2009Nimbostratus
Big-IP Local Traffic Self-ips for internet facing addresses
Is there a particular reason why I would not set the Self-IP on an interface for the Internet to deny all traffic? For any virtual servers, I am using separate IP addresses. Mostly, my concern is about allowing SSL and SSH access from the internet into the F5. Seems to make sense, but I have not been able to locate a definitive best practice. Seems like other than Self-IPs that I want to Manage through, I would want to block pretty much everything.