Creating ACL using the CLI

Question

F5 Big-IP APM 11.5.3&nbsp;
I would like to set the ACL, as the table below.
Geotinde loading each Port to each IP,&nbsp;
The F5 function
IP does not divided into subnets,
The port is also called meaningless start port ~ end port.&nbsp;
In other words, for one must enter the port of IP as per one of the ongoing&nbsp;
To be one of the input port of per one IP to continue&nbsp;
(For example: dst.IP = 1.1.1.31 // dst.port = 80, dst.IP = 1.1.1.131 // dst.port 8080)&nbsp;
Have there any way that you can apply a little more quickly?&nbsp;
Using the CLI method seems to be better.&nbsp;
&nbsp;

vitaliy_savrans · Answer

Hi, 
you can try something like this from cli:
tmos create net packet-filter pf_cli order 1 action accept logging enabled vlan vlan_name rule '(( ip proto TCP or ip6 proto TCP )  ) and ( dst host 1.1.1.31 or dst host 1.1.1.32 or dst host 1.1.1.34) and (dst port 80 or dst port 443)'

songseajoon_222 · Answer

is that acls Rules right?

vitaliy_savrans · Answer

I am sorry for the mistake this command for packet filter.

Forum Discussion

Creating ACL using the CLI

3 Replies

Recent Discussions

Unwinding the Benefits of Investing in White Label Crypto Wallet

SMTP profile not visible & showing

About AWAF "Redirect URLs" in "Responses and Blocks"

F5 iRule to replace host to path

Chrome V 124+ on MacOS - Virtual Server Access Issue

Related Content

Create a DevCentral account

How to create f5 virtual server using Python

APM Security: Protecting Internal Resources Using ACLs

Create a declarative onboarding template to use with F5 SDK

Exploring Kubernetes API using Wireshark part 1: Creating, Listing and Deleting Pods