View all questions & answers for the BIG-IP Administration Control Plane Administration (F5CAB4) exam


Question 43 Discussion

A BIG-IP Administrator wants to allow management access only from a specific subnet. Where should this be configured? (Choose one answer)

  • A. Network > Self IPs (Port Lockdown)
  • B. System > Users
  • C. Network > Routes
  • D. System > Platform
Correct Answer: A

Brave-Dump Clients Votes

A 50%
D 50%

Comments



Anonymous User 2026-01-18 05:00:41

Selected Answers: A


On BIG-IP, management access restrictions by source subnet are controlled on the Self IP using Port Lockdown. This is where you define:

Which services (HTTPS, SSH, SNMP, etc.) are allowed

Which source IPs or subnets are permitted to access those services

By restricting management ports (like 22, 443) to a specific subnet on the management or internal Self IP, you effectively limit management access.

Why the other options are incorrect

B. System > Users
Controls authentication and roles, not network-based access restrictions.

C. Network > Routes
Determines traffic forwarding paths, not access control.

D. System > Platform
Used for hardware and platform-level settings, not access control.

Exam tip

If the question mentions “allow management access only from a specific subnet”, think:
👉 Self IP + Port Lockdown

Drome 2026-01-19 02:35:46

Selected Answers: D


System ›› Platform > user administration: ssh ip allow (specific range) justo for SSH por HTTP will be on CLI