The BIG-IP system's management interface settings, including access controls for services like SSH, are configured on the System > Platform screen. This is the specific location in the Configuration Utility where an administrator can define a list of IP addresses or subnets permitted to establish SSH connections to the management IP address. Implementing this restriction is a fundamental security measure to mitigate brute-force attacks by ensuring only trusted sources can access the device's management plane.

A. Network > Interfaces: This section is used to configure physical interface properties like speed, duplex, and VLAN membership, not service access lists.

B. Network > Self IPs: This configures IP addresses for data plane traffic on VLANs. Its "Port Lockdown" feature does not apply to the dedicated management interface.

C. System > Configuration: This is a parent menu. While the correct screen is located within this menu, System > Platform is the specific and most accurate location for the task.

1. F5 Networks. (2021). BIG-IP System: Essentials, Chapter: Administrative Access to the BIG-IP System, Section: Securing access to the management port. The documentation states, "You can use the Configuration utility to specify the IP addresses that are allowed to access the BIG-IP system through the management port. On the Main tab, click System > Platform."

2. F5 Knowledge Base. (2022). K5380: Specifying the IP addresses that can connect to the BIG-IP system. The procedural steps clearly instruct the user to "Log in to the Configuration utility. Navigate to System > Platform."

3. F5 Knowledge Base. (2023). K13092: Overview of securing access to the BIG-IP system, Section: Management interface. This article explains the security concept: "You can secure access to the BIG-IP management interface by configuring the system to accept secure shell (SSH) connections from only specific IP addresses or subnets." The configuration for this is located under System > Platform.