Applies To:
Show VersionsBIG-IP APM
- 13.0.1, 13.0.0
What are app tunnels?
An app tunnel (application tunnel) provides secure, application-level TCP/IP connections from the client to the network. App tunnels are particularly useful for users with limited privileges who attempt to access particular web applications, as app tunnels do not require that the user has administrative privileges to install.
Additionally, optimization is available for app tunnels. With compression settings for app tunnels, you can specify the available compression codecs for client-to-server connections. The server compares the available compression types configured with the available compression types on the server, and chooses the most effective mutual compression setting. You configure compression for the server in the connectivity profile.
About ACLs to control access from app tunnels
When you create an app tunnel, Access Policy Manager® (APM®) automatically creates an allow ACL for the IP addresses and ports specified in the app tunnel. To disallow access to any other IP addresses and ports, you must create ACLs that deny access to them and assign the ACLs in the per-session policy. F5® recommends that you create an ACL that rejects access to all connections and put it last in the ACL order.
Configuring an ACL to reject all connections
Task summary for app tunnels
To set up this configuration, perform the procedures in the task list.