Network Security Wiki

F5: Difference between revisions

Page Discussion

F5 (view source)

Revision as of 17:58, 13 June 2024

390 bytes added ,  25 days ago
→‎Enable Internet Access on VMs
 
(4 intermediate revisions by the same user not shown)
Line 116:
 
[client]-------------------------[ F5 ]------------------------[server]
192.168.45.121 192.168.45.21 | 192.168.68.153 192.168.68.108
|
192.168.12230.217
|
|
Line 247:
 
* Iptables enable Web UI access using NAT from Host VM:
sudo iptables -t nat -I PREROUTING -p tcp -d 10.157.146.116 --dport 8443 -j DNAT --to-destination 192.168.12230.217:443
sudo iptables -I FORWARD -m state -d 192.168.12230.0/24 --state NEW,RELATED,ESTABLISHED -j ACCEPT
 
* The above rules might not survive reboot of host, hardcoding them:
Line 362:
 
== F5 Configuration ==
 
=== Manually assign Management IP address ===
 
tmsh modify sys global-settings mgmt-dhcp disabled
tmsh create sys management-ip 192.168.30.217/24
tmsh create sys management-route default { gateway 192.168.30.1 network default }
 
=== Create VLAN ===
Line 383 ⟶ 389:
<pre>
net self SelfIpforPool {
address 192.168.68.153/24
traffic-group traffic-group-local-only
vlan myVlan
Line 457 ⟶ 463:
sudo iptables --insert FORWARD --in-interface virbr0 -j ACCEPT # virbr0 is newly added interface in VM
 
== UCS Backup ==
tmsh save sys ucs $(echo $HOSTNAME | cut -d'.' -f1)-$(date +%H%M-%m%d%y)
scp root@192.168.30.217:/var/local/ucs/labdevice-0305-061324.ucs .
 
 
Retrieved from "https://aman.awiki.org/wiki/Special:MobileDiff/4904...4917"