This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Log in to ask a question

access control policy - ipaddress %1 from f5

Posted on 05-27-2017 06:17 AM
sjm2000
Silver 1
Silver 1
Reply posted on --/--/---- --:-- AM

Dear Team,

We use BIGIP/f5 device and "source" ip address from BIGIP/f5 device is obtained as ipaddress%1

I have created a custom report to understand the issue.

Though source ip is "192.168.213.2" in the apigee report is shown as:

4948-proxy-client-ip.jpg

4949-xforwardedfor.jpg

The access control policy to allow ip range 192.168.213.0 netmask 28 does work as intended.

     <IPRules noRuleMatchAction="DENY">
        <MatchRule action="ALLOW">
            <SourceAddress mask="28">192.168.213.0</SourceAddress>
        </MatchRule>
    </IPRules>


Fault code says IP DENIED access .

It feel there is something to do with BIGIP/f5 .

However any workarounds from access control policy in apigee ?.

All help is appreciated. Thank you in advance.

Best Regards

Sujith Mathew

0 1 265
Topic Labels
0 Likes
1 REPLY 1

Posted on --/--/---- --:-- AM
sjm2000
Silver 1
Silver 1
Reply posted on --/--/---- --:-- AM

update:

bigip/f5 vendor provided the below link and said its normal behavoir and i am at wits end in apigee access control policy

https://support.f5.com/kb/en-us/products/big-ip_ltm/manuals/product/tmos_management_guide_10_1/tmos_...

i wonder no one encountered this?

0 Likes