Jump to content

About this blog

Information surrounding F5's

Entries in this blog

Utilize BIG-IQ to update admin & root passwords on all F5 Devices

With the F5 BIG-IQ tool you can update the admin and root passwords for all your devices you manage or just a select few and its fast and very easy to do. When you manage BIG-IP device from BIG-IQ Centralized Management, it is good practice to change the default admin and root passwords on a regular basis. From BIG-IQ, you can change the passwords for several BIG-IP devices at one time. Note: You can change the passwords for several BIG-IP devices simultaneously only if they have the s

rev.dennis

rev.dennis in BIG-IQ

F5 GTM/DNS Load Balancing Modes

this will be the description of the different modes     Topology Load Balancing Mode Topology is a proximity based load balancing mode that allows you to direct traffic by defining topology records and selecting the Topology load-balancing mode for the wide IP or pool. The Topology mode bases the distribution of requests on the topology records and the weighted scores configured for each record. The topology records direct DNS queries to the closest virtual server, based on g

No Statistics on BIG-IQ from BIG-IPs

After upgrade to 8.0 I am unable to get any stats which means Applications tab doesn't work and just kicks out an error and same thing for most everything under the Monitoring tab. What did I try? I removed the BIG-IP device and readded it with same results I removed DCD and readded it back in which took about an hour each because it would hang on ES_ service What worked? These steps will only affect the configuration between the Big-IQ and the DCDs, none of the B

rev.dennis

rev.dennis in BIG-IQ

BIG-IQ import devices via CSV

If you are leveraging the BIG-IQ tool (version 7.x or newer) to import devices using a CSV there are a few things you should know. It would probably help to know the columns needed (note you do not include the column headers in the csv) So when you Save your CSV it MUST NOT be in UTF-8 mode or it will fail when you try and import it with incorrect Management IP Address which is the first column since the CSV import can not read a CSV saved in UTF-8 mode. Anyhow, your CSV sho

rev.dennis

rev.dennis in BIG-IQ

Authentication Issues on F5

We upgraded to 15.1.2.1 and now we seem to have a bunch of issues authenticating using either AD or TACACS.  It requires multiple tries and then it eventually works. Our first attempt is to fix the F5 devices that are using AD only vi /etc/openldap/ldap.conf You have to add a new line Then you need to run tmsh list auth ldap system-auth referrals auth ldap system-auth {     referrals yes } If its yes, then change it to no by running tmsh modify auth ldap system-a

F5 DNS Splunk Values

So we have a bunch of GTM (or BIGIP-DNS) log data in Splunk and most don't know what the heck all of these different fields mean. QID: Host (GMT): src: dest reply_code reply_code_id query answer answer_count message_type query_type record_type. I suppose I will take a crack at it and see if I can find explanations of each field. QID (query ID) You c

rev.dennis

rev.dennis in BIGIP DNS

Status Icons and what they mean

Description The Configuration utility displays various colored icons to report the status of these objects. When you point to the status icon that accompanies an object, the BIG-IP system displays information about the object's status. The following table lists the icons that the Configuration utility displays.

guru

guru in BIGIP LTM

Testing Monitor Manually

Here is a standard HTTP monitor that checks whether login page is up and working on the pool members. [dennis@mifnt1slbgtm03:Active:Standalone] ~ # tmsh list gtm monitor https https.vpn.loginpage.statuscode.new gtm monitor https https.vpn.loginpage.statuscode.new {     cipherlist DEFAULT:+SHA:+3DES:+kEDH     compatibility enabled     defaults-from https     destination *:*     interval 30     probe-timeout 5     recv "HTTP/1.1 200 OK"     send "GET /dana-na/auth/url_default/welcome.cgi HTTP/

guru

guru

Comparing the Difference Between Self-IP and Floating IP in the F5

To start, it's easier to explain what a Self IP address does on an F5 Self IP Address Self IP address is the IP address that is used to preform the monitoring in F5. Once you enable Monitors for the Pool members in F5 then source IP address is F5 self IP address and destination IP address is Pool Member IP address. For every VLAN you need to create a separate Self IP address in each of the F5 devices if you are using active/passive or Active/Active in HA. Self I

rev.dennis

rev.dennis in BIGIP LTM

×
×
  • Create New...