SSH IP Allow - multiple subnets

Question

I'm trying to secure web management access to my LTM 1600 v11.1.  I've configured SSH and am allowing the following subnets:&nbsp;
&nbsp;10.1.1.64   255.255.255.240
&nbsp;10.1.2.128   255.255.255.128
&nbsp;10.1.3.0   255.255.255.0&nbsp;
&nbsp;This is what I've configured under Platform -&gt; SSH IP Allow:
&nbsp;10.1.1.64/255.255.255.240 10.1.2.128/255.255.255.128 10.1.3.*&nbsp;
&nbsp;Issue:  From 10.1.4.x I can still SSH into the LTM, so it doesn't seem like my statement is valid.  Has anyone successfully configured multiple subnets for SSH IP Allow access?&nbsp;
&nbsp;Thanks.
&nbsp;J

imij_38396 · Answer

i was under the impression that the big-ip only has one management plane for inbound / outbound comms, and that it did not allow multiple connections for this.  from what i gathered, and our big-ip is still new as well, but the managment port is a dedicated port that is only there for management traffic.  so i don't think you can put that port on mulitiple subnets...

Forum Discussion

SSH IP Allow - multiple subnets

1 Reply

Recent Discussions

Trouble with TCP::option set 28

CITRIX remote desktop solution using F5 APM

BIG-IP rseries license

LDAPS: intermittent login issues

VMWare Backups of active VEs?

Related Content

Using Client Subnet in DNS Requests

Multiple Ways to Configure Usage Reporting in NGINX

F5 Distributed Cloud – Multiple custom certificates for HTTP/TCP LB

Implementing Client Subnet DNS Requests

Remove subnet from NAT pools without any impact