Forum Discussion

TeemuK's avatar
Icon for Altostratus rankAltostratus
Sep 07, 2023

Is it possible to prevent BIG-IP to send TCP RST?


I was wondering if it is possible to prevent the big-ip system to send TCP RST to connections / ports that are not actually in use? This is a problem when scanning etc activities occur towards services.





3 Replies

  • Hi TeemuK ,

    Could you be more specific about why you want to prevent TCP resets? because the F5 is a deny device by default, if the port is not open it have to send a reset as a firewall, in the case you want to allow all port in a virtual server you have to configure the port in 0 in the virtual server.