An app tunnel (application tunnel) provides secure, application-level TCP/IP connections from the client to the network. App tunnels are particularly useful for users with limited privileges who attempt to access particular web applications, as app tunnels do not require that the user has administrative privileges to install.
Additionally, optimization is available for app tunnels. With compression settings for app tunnels, you can specify the available compression codecs for client-to-server connections. The server compares the available compression types configured with the available compression types on the server, and chooses the most effective mutual compression setting. You configure compression for the server in the connectivity profile.
When you create an app tunnel, Access Policy Manager® (APM®) automatically creates an allow ACL for the IP addresses and ports specified in the app tunnel. To disallow access to any other IP addresses and ports, you must create ACLs that deny access to them and assign the ACLs in the per-session policy. F5® recommends that you create an ACL that rejects access to all connections and put it last in the ACL order.
To set up this configuration, perform the procedures in the task list.
|None||Specifies that the app tunnel resource uses neither RPC or FTP protocols.|
|Microsoft RPC||Specifies that the resource uses the Microsoft RPC protocol.|
|Microsoft Exchange RPC Server||Specifies that the resource uses the Microsoft Exchange RPC Server protocol.|
|FTP||Specifies that the resource uses FTP protocol.|