access control policy - ipaddress %1 from f5

sjm2000 · May 27, 2017, 1:17pm

Dear Team,

We use BIGIP/f5 device and “source” ip address from BIGIP/f5 device is obtained as ipaddress%1

I have created a custom report to understand the issue.

Though source ip is “192.168.213.2” in the apigee report is shown as:

The access control policy to allow ip range 192.168.213.0 netmask 28 does work as intended.

     <IPRules noRuleMatchAction="DENY">
        <MatchRule action="ALLOW">
            <SourceAddress mask="28">192.168.213.0</SourceAddress>
        </MatchRule>
    </IPRules>

Fault code says IP DENIED access .

It feel there is something to do with BIGIP/f5 .

However any workarounds from access control policy in apigee ?.

All help is appreciated. Thank you in advance.

Best Regards

Sujith Mathew

sjm2000 · May 29, 2017, 6:20am

update:

bigip/f5 vendor provided the below link and said its normal behavoir and i am at wits end in apigee access control policy

https://support.f5.com/kb/en-us/products/big-ip_ltm/manuals/product/tmos_management_guide_10_1/tmos_route_domains.html

i wonder no one encountered this?

Topic		Replies	Views
The AccessControl policy is not working. Apigee api-runtime	6	44	November 18, 2015
Implement Access Control policy for many Ip Addresses Apigee api-runtime	2	22	August 16, 2016
Access control policy works differently for secure. Apigee api-runtime	1	14	September 8, 2015

access control policy - ipaddress %1 from f5

AI Suggested topics