If you are leveraging the BIG-IQ tool (version 7.x or newer) to import devices using a CSV there are a few things you should know.
It would probably help to know the columns needed (note you do not include the column headers in the csv)
So when you Save your CSV it MUST NOT be in UTF-8 mode or it will fail when you try and import it with incorrect Management IP Address which is the first column since the CSV import can not read a CSV saved in UTF-8 mode.
Anyhow, your CSV sho
We upgraded to 15.1.2.1 and now we seem to have a bunch of issues authenticating using either AD or TACACS. It requires multiple tries and then it eventually works.
Our first attempt is to fix the F5 devices that are using AD only
vi /etc/openldap/ldap.conf
You have to add a new line
Then you need to run
tmsh list auth ldap system-auth referrals
auth ldap system-auth {
referrals yes
}
If its yes, then change it to no by running
tmsh modify auth ldap system-aut
This is to help better explain the purpose of a sync group on the F5 GTM's or otherwise known as BIG-IP DNS.
The following figure shows that, after a configuration change is made on the Los Angeles BIG-IP DNS system, the local big3d process initiates an iQuery connection to BIG-IP DNS sync group members in New York and Europe and advertises the updated configuration to the remote gtmd processes.
Synchronization details
When you configure BIG-IP DNS synchronization, the sync
Assumptions:
Log volume will be huge and will only turn for critical applications that too in production. This can be tested in Dev/Pre-prod prior moving to the production but need to be turned off immediately.This will not cause performance issues because of High-speed logging HSL feature.
This logging feature can also be turned on for troubleshooting purposes if required.
Dependencies:
Enterprise splunk team should provision dedicated storage for the new applications with F
This is extremely useful troubleshooting external URLs going through proxy / eGTMs / iGTMs and all other sort of combinations.
What i really like about it is it really gives good data for different touch points.
1.time_namelookup
2.time_connect
3.time_appconnect
4.time_pretransfer
5.time_redirect
6.time_starttransfer
It helped me handling extrenal 3rd party URLs and their response times, handshake failures.
********************************************************
Sometimes you just need to know what SSL Profile is attached to what Virtual Servers.
Here are a couple of cheats I use.. maybe it helps ya, maybe it don't
Simple command to run that looks in every partition
tmsh -q -c 'cd / ; show ltm virtual recursive profiles' | egrep 'Ltm::Virtual Server:| Ltm::ClientSSL Profile:'
You can always tack on | grep virtualservername
OR
To find what virtual servers have a certain ssl profile, you can tack on | grep -B1 sslprofile name
Training Material captured throughout time learning about the LTM's, GTM's and Viprion chassis for F5's version 11.
Chapter 1 - Setting Up the BIG-IP System
Introducing the BIG-IP System
Initially Setting Up the BIG-IP System
Configuring the Management Interface
Activating the Software License
Provisioning Modules and Resources
Importing a Device Certificate
Specifying BIG-IP Platform Properties
Configuring the Network
Configur
So we have a bunch of GTM (or BIGIP-DNS) log data in Splunk and most don't know what the heck all of these different fields mean.
QID:
Host (GMT):
src:
dest
reply_code
reply_code_id
query
answer
answer_count
message_type
query_type
record_type.
I suppose I will take a crack at it and see if I can find explanations of each field.
QID (query ID)
You c
20
9
2
1
