Jump to content

F5 Blog

  • entries
    32
  • comments
    3
  • views
    24

Contributors to this blog

About this blog

Entries in this blog

BIG-IQ import devices via CSV

If you are leveraging the BIG-IQ tool (version 7.x or newer) to import devices using a CSV there are a few things you should know. It would probably help to know the columns needed (note you do not include the column headers in the csv) So when you Save your CSV it MUST NOT be in UTF-8 mode or it will fail when you try and import it with incorrect Management IP Address which is the first column since the CSV import can not read a CSV saved in UTF-8 mode. Anyhow, your CSV sho

rev.dennis

rev.dennis

Authentication Issues on F5

We upgraded to 15.1.2.1 and now we seem to have a bunch of issues authenticating using either AD or TACACS.  It requires multiple tries and then it eventually works. Our first attempt is to fix the F5 devices that are using AD only vi /etc/openldap/ldap.conf You have to add a new line Then you need to run tmsh list auth ldap system-auth referrals auth ldap system-auth {     referrals yes } If its yes, then change it to no by running tmsh modify auth ldap system-aut

rev.dennis

rev.dennis

F5 GTM-DNS Sync Group

This is to help better explain the purpose of a sync group on the F5 GTM's or otherwise known as BIG-IP DNS. The following figure shows that, after a configuration change is made on the Los Angeles BIG-IP DNS system, the local big3d process initiates an iQuery connection to BIG-IP DNS sync group members in New York and Europe and advertises the updated configuration to the remote gtmd processes. Synchronization details When you configure BIG-IP DNS synchronization, the sync

guru

guru

Splunk Request Logging

Assumptions: Log volume will be huge and will only turn for critical applications that too in production. This can be tested in Dev/Pre-prod prior moving to the production but need to be turned off immediately.This will not cause performance issues because of High-speed logging HSL feature. This logging feature can also be turned on for troubleshooting purposes if required. Dependencies: Enterprise splunk team should provision dedicated storage for the new applications with F

guru

guru

Troubleshooting proxy and/or 3rd party URLs

This is extremely useful troubleshooting external URLs going through proxy / eGTMs / iGTMs and all other sort of combinations. What i really like about it is it really gives good data for different touch points. 1.time_namelookup 2.time_connect 3.time_appconnect 4.time_pretransfer 5.time_redirect 6.time_starttransfer It helped me handling extrenal 3rd party URLs and their response times, handshake failures. ********************************************************

guru

guru

Identify SSL Profile with Virtual Server

Sometimes you just need to know what SSL Profile is attached to what Virtual Servers. Here are a couple of cheats I use..  maybe it helps ya, maybe it don't Simple command to run that looks in every partition tmsh -q -c 'cd / ; show ltm virtual recursive profiles' | egrep 'Ltm::Virtual Server:| Ltm::ClientSSL Profile:' You can always tack on | grep virtualservername OR To find what virtual servers have a certain ssl profile, you can tack on | grep -B1 sslprofile name

wildweaselmi

wildweaselmi

F5 Administering BIG-IP v11

Training Material captured throughout time learning about the LTM's, GTM's and Viprion chassis for F5's version 11. Chapter 1 - Setting Up the BIG-IP System Introducing the BIG-IP System Initially Setting Up the BIG-IP System Configuring the Management Interface Activating the Software License Provisioning Modules and Resources Importing a Device Certificate Specifying BIG-IP Platform Properties Configuring the Network Configur

rev.dennis

rev.dennis

F5 DNS Splunk Values

So we have a bunch of GTM (or BIGIP-DNS) log data in Splunk and most don't know what the heck all of these different fields mean. QID: Host (GMT): src: dest reply_code reply_code_id query answer answer_count message_type query_type record_type. I suppose I will take a crack at it and see if I can find explanations of each field. QID (query ID) You c

rev.dennis

rev.dennis

  • Who's Online   0 Members, 0 Anonymous, 15 Guests (See full list)

    • There are no registered users currently online

Announcements



×
×
  • Create New...

Important Information

Privacy Policy