Restrict Public IP to a ADC entity

Restrict Public IP to a ADC entity

book

Article ID: CTX297161

calendar_today

Updated On:

Description

This article describes how can we restrict the public IP to access any ADC entity using Responder policy

Instructions

  1. For blocking the public IP we need to know the Private IP addresses.
  2. Configure a policy Expression for all private IP Address:
    • add policy expression private_ip "(CLIENT.IP.SRC.IN_SUBNET(172.16.0.0/12) || (CLIENT.IP.SRC.IN_SUBNET(10.0.0.0/8) || (CLIENT.IP.SRC.IN_SUBNET(192.168.0.0/16) "
  3. Create a Responder policy:
    • add responder policy block_internet_ip "!private_IP" DROP
  4. Now bind the policy to the required entity like VServer, Globally or Management.
  5. bind lb vserver <vserver_name> -policyName  block_internet_ip -prioirty 100

Powered by Wolken Software