Daniel_W__13795
Jun 19, 2018Nimbostratus
APM with F5 Access - ACLs for https Endpoints with dynamic IPs
Hello, we are using F5 Access to connect from mobile devices (iOS/Android) using static L4 ACLs to restrict the destinations users can access. With changing IP adresses on the backend (e.g. AWS ALBs change their IPs as they want), this design doesn't work any more. Using L7 ACLs even does only help for http connections but don't work on https.
I tried attaching an iRule to the APM VS with ACCESS_ACL_DENIED (to do some magic stuff like DNS lookup and allow that request based on the DNS name), but I don't see that event triggered.
Does anybody has an idea how to solve that?
Thanks in advance.