Information
It is recommended to maintain secure access to the GUI by allowing only trusted IP addresses or range of IP addresses
Rationale:
Any compromised network device within enterprise network would gain illegal access to F5 configuration utility abusing existing unresolved vulnerabilities.
Impact:
Allowing any IP address to access may expose the management interface of F5 to different types of attacks such as DoS
Solution
If the output of the above command show ALL, the following command would be executed to modify the settings:
modify modify /sys httpd allow replace-all-with { <IP address or IP address range> }
Default Value:
ALL