Limited outgoing access to a url

Question

Hopefully a simple query.

We have a f5 that we just use for incoming traffic and have no real need for outgoing traffic before (to the internet).

Recently we have a system that has to connect to a internet website for licensing functionality.

Never having to have to have done something like this before I am not sure how to best accomplish this.

Buying a SWG license isn't on the cards.

Is it possible just to write a afm rule and just have the application server have a default route on a internal self ip. (note not really sure around afm stuff).
Should I just make like a ltm rule that work backwards and have the create a single pool member as the destination website and have a listener on the internal interface. Once again make a default route for the license server as the listener ip?
Is there some other way/s to do this that is secure?

Just looking for some ideas and a pointer in the right direction as its something thats a bit out of the box for me having only done awaf and gtm stuff on the f5.

Cheers

samir · Answer

You can setup outgoing senerio.1. Public IP address needed to create SNAT Pool2. Create route per requirement.3. Create IP forwading virtu server.4. If any condition needed then call in irule​Hope it works for you.​​

Forum Discussion

Limited outgoing access to a url

1 Reply

Recent Discussions

F5Access | MacOS Sonoma

enable tls1.2 on management interface on F5 ltm running version 10.x

[ASM] - what is "Browser Challenge file" ?

SMS server with BIGIP

F5 terminal - help to run commands - disk space full

Related Content

How to limit some snmp mib access

Federated AWS Console Access Made Easy: F5 BIG-IP Access Policy Manager Access Guided Configurations

Rate Limiting based on ACCESS TOKEN (OAuth 2.0)

Introduction to F5 Distributed Cloud Console Rate Limiting Feature

Overview of API Access Control and implementing API key access control with BIG-IP APM