Jump to content
Welcome to our new Citrix community!
  • 0

How to bypass specific Source IP from AppFW


Sohel Shaikh

Question

3 answers to this question

Recommended Posts

  • 0

You just need to adjust your AppFW policy to match only the traffic you want to inspect.

For example, if your AppFW policy rule is "true" (matches all traffic), you can change to "CLIENT.IP.SRC.EQ(1.1.1.1).NOT && CLIENT.IP.SRC.EQ(2.2.2.2).NOT". This will inspect all, except traffic from 1.1.1.1 and 2.2.2.2. 

If your list of IP exclusions is larger than 2 or 3 IPs, I recommend using a dataset for the list. Or you can also exclude entire subnets.

Link to comment

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...