This short article is helping explain how User Management works for the EventGuyZ system used for Mid-America Festivals.
MAIN SITE is this site (https://eventguyz.com) which is where users should all be registered. Once the EventGuyZ staff is made aware of the new MAF user, they get added to a group on this website called MAF_Staff or MAF_Managers
What's the difference?
MAF_Staff will allow access to the Mid-America Festivals Staff Service/Group that provides visibility into how
So when a change is done on an F5 that is part of a device group (making it HA) the box will display Changes Pending until sync'd
You can use tmsh to show the most recent changes to a device group by running the following command. You can identify the device-group by simply typing tmsh show /cm sync-status
tmsh show cm device-group <device_group>
these are the two entries to pay attention to
CID Time (UTC) 2019-Mar-27 10:07:21
LSS Time (UTC)
With the F5 BIG-IQ tool you can update the admin and root passwords for all your devices you manage or just a select few and its fast and very easy to do.
When you manage BIG-IP device from BIG-IQ Centralized Management, it is good practice to change the default admin and root passwords on a regular basis. From BIG-IQ, you can change the passwords for several BIG-IP devices at one time.
Note: You can change the passwords for several BIG-IP devices simultaneously only if they have the s
this will be the description of the different modes
Topology Load Balancing Mode
Topology is a proximity based load balancing mode that allows you to direct traffic by defining topology records and selecting the Topology load-balancing mode for the wide IP or pool. The Topology mode bases the distribution of requests on the topology records and the weighted scores configured for each record. The topology records direct DNS queries to the closest virtual server, based on g
After upgrade to 8.0 I am unable to get any stats which means Applications tab doesn't work and just kicks out an error and same thing for most everything under the Monitoring tab.
What did I try?
I removed the BIG-IP device and readded it with same results
I removed DCD and readded it back in which took about an hour each because it would hang on ES_ service
What worked?
These steps will only affect the configuration between the Big-IQ and the DCDs, none of the B
If you are leveraging the BIG-IQ tool (version 7.x or newer) to import devices using a CSV there are a few things you should know.
It would probably help to know the columns needed (note you do not include the column headers in the csv)
So when you Save your CSV it MUST NOT be in UTF-8 mode or it will fail when you try and import it with incorrect Management IP Address which is the first column since the CSV import can not read a CSV saved in UTF-8 mode.
Anyhow, your CSV sho
We upgraded to 15.1.2.1 and now we seem to have a bunch of issues authenticating using either AD or TACACS. It requires multiple tries and then it eventually works.
Our first attempt is to fix the F5 devices that are using AD only
vi /etc/openldap/ldap.conf
You have to add a new line
Then you need to run
tmsh list auth ldap system-auth referrals
auth ldap system-auth {
referrals yes
}
If its yes, then change it to no by running
tmsh modify auth ldap system-aut
This is to help better explain the purpose of a sync group on the F5 GTM's or otherwise known as BIG-IP DNS.
The following figure shows that, after a configuration change is made on the Los Angeles BIG-IP DNS system, the local big3d process initiates an iQuery connection to BIG-IP DNS sync group members in New York and Europe and advertises the updated configuration to the remote gtmd processes.
Synchronization details
When you configure BIG-IP DNS synchronization, the sync
Assumptions:
Log volume will be huge and will only turn for critical applications that too in production. This can be tested in Dev/Pre-prod prior moving to the production but need to be turned off immediately.This will not cause performance issues because of High-speed logging HSL feature.
This logging feature can also be turned on for troubleshooting purposes if required.
Dependencies:
Enterprise splunk team should provision dedicated storage for the new applications with F
Count Room receives all credit card terminals. They will split up the terminals for what is assigned to Box Office and what is assigned to Count Room / Food Booths. Once Box Office recieves the credit card terminals from Count Room, take a note of the last 4 numbers of the serial number of the credit card terminal and where it will be assigned for the run of the that season.
Example:
CC SALES
These terminals use CELL service so no need to worry if it's connected to
This is extremely useful troubleshooting external URLs going through proxy / eGTMs / iGTMs and all other sort of combinations.
What i really like about it is it really gives good data for different touch points.
1.time_namelookup
2.time_connect
3.time_appconnect
4.time_pretransfer
5.time_redirect
6.time_starttransfer
It helped me handling extrenal 3rd party URLs and their response times, handshake failures.
********************************************************
Sometimes you just need to know what SSL Profile is attached to what Virtual Servers.
Here are a couple of cheats I use.. maybe it helps ya, maybe it don't
Simple command to run that looks in every partition
tmsh -q -c 'cd / ; show ltm virtual recursive profiles' | egrep 'Ltm::Virtual Server:| Ltm::ClientSSL Profile:'
You can always tack on | grep virtualservername
OR
To find what virtual servers have a certain ssl profile, you can tack on | grep -B1 sslprofile name
Training Material captured throughout time learning about the LTM's, GTM's and Viprion chassis for F5's version 11.
Chapter 1 - Setting Up the BIG-IP System
Introducing the BIG-IP System
Initially Setting Up the BIG-IP System
Configuring the Management Interface
Activating the Software License
Provisioning Modules and Resources
Importing a Device Certificate
Specifying BIG-IP Platform Properties
Configuring the Network
Configur
So we have a bunch of GTM (or BIGIP-DNS) log data in Splunk and most don't know what the heck all of these different fields mean.
QID:
Host (GMT):
src:
dest
reply_code
reply_code_id
query
answer
answer_count
message_type
query_type
record_type.
I suppose I will take a crack at it and see if I can find explanations of each field.
QID (query ID)
You c
Here are the notes I have for internet at each of the festivals
BaRF
KCRF
MiRF
WiFi: MyWiseGuys - (Password: crazyb1tch) --> This utilizes a direct connection from Count Room via a white wire down to Area 100 and to a mini NetGear switch located in the rafters where it splits with the PoS systems for 100 and then a blue cable runs to the Box Office to port 1 on the Netgear switch. The yellow cable in port 2 runs to a white Apple Airport Capsule which is your
