Enterprise Service Cloud - Docs

Technical Details

Configuration Managed Reverse Proxy

The Managed Reverse Proxy is based on an F5 ADC platform. The configuration parameters are set as follows for a configuration IPv4, size S, no re-encryption configuration

This coniguration templat can not be changed by the customer.

Username@(adc01rp1010bew)(cfg-sync In Sync)(/S1-green-P::Active)(/pa--dd91fb09-c6b0-4b47-b2c8-58dfa116aa03/app0)(tmos)# list ltm virtual vs--hostname.domain.ch--ipv4--https all-properties 
ltm virtual vs-- hostname.domain.ch --ipv4--https {
    address-status yes
    app-cloud-security-services none
    app-service none
    auth none
    auto-lasthop default
    bwc-policy /Common/Size_S
    clone-pools none
    cmp-enabled yes
    connection-limit 10000
    creation-time 1970-01-01:01:00:00
    description app0
    destination /pa--dd91fb09-c6b0-4b47-b2c8-58dfa116aa03/va--xxx.xxx.xxx.xxx:443
    enabled
    ephemeral-auth-access-config none
    eviction-protected disabled
    fallback-persistence none
    flow-eviction-policy none
    gtm-score 0
    ip-protocol tcp
    last-hop-pool none
    last-modified-time 2023-04-24:15:45:14
    mask 255.255.255.255
    metadata none
    mirror disabled
    mobile-app-tunnel disabled
    nat64 disabled
    parent-name none
    partition pa--dd91fb09-c6b0-4b47-b2c8-58dfa116aa03
    per-flow-request-access-policy none
    persist none
    policies {
        po--default { }
    }
    pool pl--default--80
    profiles {
        /Common/f5-tcp-progressive {
            context all
        }
        /Common/rl-comm-logging {
            context all
        }
        pr--http--hostname.domain.ch {
            context all
        }
        pr--tlss-- hostname.domain.ch {
            context clientside
        }
    }
    rate-class none
    rate-limit 100
    rate-limit-dst-mask 0
    rate-limit-mode object
    rate-limit-src-mask 0
    related-rules none
    rules none
    security-log-profiles none
    serverssl-use-sni disabled
    service-down-immediate-action none
    service-policy none
    source 0.0.0.0/0
    source-address-translation {
        pool sp--xxx.xxx.xxx.xxx
        type snat
    }
    source-port preserve
    syn-cookie-status not-activated
    traffic-classes none
    traffic-matching-criteria none
    translate-address enabled
    translate-port enabled
    transparent-nexthop none
    urldb-feed-policy none
    vlans {
        /Common/vl--cadc-00004--0103
    }
    vlans-enabled
    vs-index 8
}

List allow Source IP

1.1.1.1
!this is a description of a section
10.10.10.0
10.10.11.0/25
10.10.12.0/25 !this is a discription of the entry
255.255.255.0/28
2001:db8:0:0:0:0:0:0/64

2001:db8:0:0:0:0:2:1

List deny Source IP

1.1.1.1
10.10.10.0
10.10.11.0/25
10.10.12.0/25
255.255.255.0/28
2001:db8:0:0:0:0:0:0/64
2001:db8:0:0:0:0:2:1
Last Updated: