HealthCheck elements provides the ability to perform boolean based expressions against your healthchecks (AND, OR, and NOT).In this example we will configure a health check that bring up http on webserver1 if : the string STRING1 is matched within the content retrieved via a HTTP GET / from server 192.168.1.20 the string STRING2 is matched … Read more
A match-list provides the ability to content match string based values and mark the application (layer 7) based health-check as either up or down.When assigning a match-list health-check the match-list is assigned to a port policy. This port policy is then assigned to the virtual server. Steps 1. First we enable Layer 7 health-checks on … Read more
When disabling a service on the Brocade ADX you can either disable the port or real server. Below shows the necessary syntax: server real <NAME> <IP> disable server real <NAME> <IP> port ssl disable port http disable When either the server or port is disabled it is important to remember that new sessions are not … Read more
Port profiles provide the ability to configure custom settings for individual TCP/UDP ports. Any port that the ADX deems unknown, is in turn defined as UDP and will send any subsequent health-checks to the port via UDP. To use a unknown port a port profile must be configured. (config)# server port 8181(config-port-8181)# tcp keepalive use-master-state(config-port-8181)# … Read more
Below provides a basic example on how to configure a primary / backup setup. Traffic is only distributed to the primary server, at the point the primary node becomes offline traffic is distributed to the secondary server. server real RS_192.168.1.1 192.168.1.1 port http port http url “HEAD /” server real RS_192.168.1.2 192.168.1.2 backup port http port http url “HEAD /” … Read more
Content Switching provides the ability to distribute / rewrite traffic based upon a sessions Layer 7 payload. This feature also provides the ability to persist connections to a given server/server group. There are 4 main methods to Layer 7 switching: Cookie Switching – Uses either a server sent cookie or ADX injected cookie to direct … Read more
Port Alias`s provide the ability to bind a single Real Server to multiple Virtual Servers. This is achieved via the real-port option from within the bind command. Below shows an example, Create Real Server First the Real Server is created with a port alias. Here the real port will be port 80 and the alias … Read more
Though the Cisco CSS does not provide a direct command to display the CPU usage on a per process basis, this can be achieved via the following commands from within the llama debug utility. CSS# llama CSS(debug)# symbol-table load SPRITZ CSS(debug)# shell 1 1 spy CSS(debug)# shell 1 1 spyReport CSS(debug)# shell 1 1 spyStop … Read more
Summary Typically health-checks are assigned on a per virtual server basis. However this can become cumbersome if you have a large number of virtual servers configured.Via the use of a Port Policy health-checks are configured within the Port Policy. The Port Policy is then assigned to multiple Virtual Servers. Syntax Below shows the required commands … Read more
The Cisco CSS offers 2 address translation methods ; source groups and destination groups. Source Group When a connection is initiated outbound through the Cisco CSS (from any of the group services) the source IP is translated to the groups VIP address.Source group servers are defined using the add service [service name] command. Example : … Read more
The following commands are based upon Brocade ADX 12.4. Show Commands show ip int show interface(s) ip`s show default values show defaults show server global show global configured parameters show ip vrrp-extended brief show cluster status show server real show real server stats show server real http [real server] show real server http details for … Read more
The following commands are based upon F5 LTM 10.1.0 (and higher) bigpipe bigtop show statistic summary b self show show self IP`s b vlan show show vlans b interface show show interfaces b pool [pool name] show show pool b virtual [virtual name] show show vs b snat list list snats b route domain list … Read more
Below provides the steps rename a virtual server, pool or any other object within the configuration of a F5 LTM. The steps provided involve the editing of the (bigip.conf) configuration file. This file is then verified for any potential issues before it is loaded and committed to the F5 LTM`s running configuration. Backup Configuration First … Read more
Symptoms Slow network performance when accessing back-end servers through a Cisco CSS running 8.20.3.03 (or higher). Background Cisco CSS 8.20.3.02 (and lower) did not support window scaling. This meant that the initial window scale option announced within the 3 way handshake was not propagated to the server. This issue was resolved within 8.20.3.03 (CSCsk92868), however … Read more
What is an iRule ? iRules are built using a TCL-based scripting language allowing arbitrary manipulation of traffic flowing through the BIG-IP, including real-time modification of defined data. Components of an iRule A typical iRule contains four main components. These are : rule NAME { when EVENT { if { conditional_statement } { action_when_condition_true } … Read more
Below shows a number of iRule examples that you may find useful when creating or deploying iRules on the BIGIP F5 device. For the latest in iRule tips and tricks hop over to our iRule Cookbook – click here WWW redirect This simple iRule redirects any HTTP traffic without the prepending www to a www … Read more
A monitor is a test that the LTM can perform on either a node of member. A monitor typically tests for a specific response within a specified time period. BigIP uses the results of this to decide on whether traffic should be sent to the node or pool member. Types of Monitoring There 4 main … Read more
Introduction The BigIP F5 provide 2 ways in which SSL is processed. These are : Client SSL – F5 decrypts the encrypted traffic inbound from the client.Server SSL – Traffic is re-encrypted by the F5 then routed onto the backend servers. There are a number of advantages to SSL termination on the F5, which are … Read more
Via the use of administrative states, the administrator has the power to gracefully select a pool members state. States There are 3 administrative states: Enabled – This is the default state. All connection types are passed to the pool member and the monitor continues to determine the state of the member.Disabled – Only new connections … Read more
Persistence When an application maintains the session, a persistent session between the client and server must be correctly maintained to ensure the server can continue to process client requests. A typical example is web based shopping carts, this normally requires the user to maintain persistence to a single server during the lifetime of the session. … Read more
Here is our hand-picked selection of the best courses you can find online:
Cisco CCNA 200-301 Certification Gold Bootcamp
Complete Cyber Security Course – Network Security
Internet Security Deep Dive course
Python Pro Bootcamp
and our recommended certification practice exams:
AlphaPrep Practice Tests - Free Trial