"Port lockdown" option for SNAT pool addresses?

Question

For self/floating IPs there's a "port lockdown" option that can be set to "allow none" ("Specifies that this self IP accepts no traffic. If you are using this self IP as the local endpoint for WAN optimization, select this option to avoid potential port conflicts.") in order to secure it. I don't see a similar option for SNAT pool addresses, however. How would I go about doing that other than block such addresses on the border firewall?

Thanks!

lidev · Accepted Answer

Hi Fallout1984,&nbsp;You can also use Packet filter to filter traffic going to these SNAT pool addresses :  Configuring Packet FilteringRegards

fallout1984 · Answer

Thanks for the quick response - much appreciated! 😀

lidev · Answer

you're welcome mate 😉

Forum Discussion

"Port lockdown" option for SNAT pool addresses?

3 Replies

Recent Discussions

F5Access | MacOS Sonoma

Active- Active HA setup

syslog server connection

Cannot see floating MAC address outside of ESXi

Rewrite uri translation not working

Related Content

Decoding the IPv4 address from the persistence cookie

CSV to Address External Datagroup File

SNAT IP address logging

Destination address at F5

Virtual address from address list is down after assignment to VS