Professional Documents
Culture Documents
Go to SYSTEMARCHIVECREATE
Create a UCS backup of the system and save it on the system itself.
Name it Original.ucs.
Go to SYSTEMSUPPORT
Name it MyQKview.
What optional data can be excluded from this file.:-- Audit Files, Core filters, Bash history, unlimited
snap and upload to ihealth
Can you create and upload a QKview file to iHEALTH.F5.com from here . Yes
Look for the option of specifying the Support Case Number also if you are uploading a file to support
a TAC case.
Leave the default LB method and default setting for the Priority Group Activation.
What is the ratio and the priority group values for each pool member.
Ration 1 Priority 0
Task 5 : Change the LB method to ratio and assign ratio of 1,2,3 to server 1 , 2 and 3 respectively.
Enable Priority Group Activation and set it trigger if number of pool members falls below 2.
How will the connections be distributed among the pool members now.
Initialy in between group ie server 1 and 2 at ratio 1:2
Can you reach the same page without going through the LOCAL TRAFFIC tab.
Yes
STATISTICSMODULE STATISTICSNETWORKINTERFACES
LOCAL TRAFFICMONITORCREATE
Add the monitor to each pool member individually and ensure that pool member is shown as UP if
marked as UP by even one monitor.
LOCAL TRAFFIC POOLS Your Pool Click on each pool member ..Change Configuration to
Advanced.
Done
Select Monitor, move MY_http to active monitor and in availability requirement choose at least 1.
At nodes
Task 8: Create a virtual server named VS_HTTP using the IP address mentioned for your username
Create another VS using the same address and same settings; name it VS_HTTP1
Now when you access the VS IP address using the Client Machine’s browser, which VS will you be
matched with.
VS_HTTP1
Search for a KB article “ K14800: Order of precedence for Virtual server matching” in google.
Go through the article , especially the use case mentioned in the last.
Task 9 : What is the default protocol profile associated with your VS.
LOCAL TARFFICPROFILE:PERSISTENCECREATE
Name = SAA_Profile
Refresh the browser window on the client machine. You should be hitting the same pool member.
Login to the BIGIP CLI from the terminal window in the client machine using
Password=N3wp@$$w0rd
COOKIE PERSISTENCE:
LOCAL TRAFFICPROFILE:PERSISTENCECREATE
Name = MY_cookie
Yes
Check the persistence records created on the BIGIP system from the CLI.
Ok no connection is there
Task 10 : Create a new VS using the same IP address but listening on port 443.
Name VS_https
Try accessing the VS using the browser of the Client Machine by typing
https:// IP of VS_https
SSL OFFLOADING needed (can be done by attaching http and client ssl)
Name =MY_ssl
Finished.
LOCAL TARFFICPROFILE:SSL:CLIENTCREATE.
Name = MY_Profile
Certificate= MY_ssl
Key= MY_ssl
Chain= MY_ssl
Finished.
Now try to access the same VS from the browser on the Client machine.
Yes Working
You should be seeing the content from the Web Servers now.
ClientBIGIP is HTTPS
Task 11: Where do you configure Port Lock down properties for each SELF IP: At Neterk-Self ip
What are the options available…….Allow none Allow default Allow 443
Search in google and list down the protocols allowed by the “ Allow Default “ option.
Task 12 : To which Traffic Group does the floating Self IP belong by default. Traffic group 1
Network- SelfIP- …….It will be there in internal and external self ip config
What is the difference between Packet filter and Port Lock down.
Packet filter used for VS to filter content and port lockdown for self IPS
Where do you specify the MAC MASQUERADE Address. In Device Management---> traffic group
SYSTEMUSERS:USERS LISTCREATE.
There are 11 diff kind of user (including No access) where admin has all credentials n no access has
no
Search and list down the capabilities that exist in each role. Ok
Task 16 : Where do you specify a DNS , NTP and UP stream Proxy Server on the BIG IP system.
SYSTEMCONFIGUARTIONDEVICENTP
SYSTEMCONFIGUARTIONDEVICEDNS
SYSTEMCONFIGUARTIONDEVICEUPSTREAM PROXY.
Task 17 : Log in to the CLI of the BIG IP
Achieve the following using the CLI and note down the commands that you issued.
a) See the management IP address of the system: tmsh list /sys management-ip
b) See the management route of the system tmsh list /sys management-route
d) List the virtual servers on the system tmsh list ltm virtual
e) Add a virtual server tmsh create ltm virtual VS destination 172.31.96.106:80 pool My_pool
ip-protocol tcp source-address-translation { type automap }
h) Change the load balancing method of the above pool tmsh modify ltm pool load-balancing-
mode ratio
j) Create a new Self IP, Vlan: I didn’t get it properly. For this I hve to use tagging I guess ?
Note the different options : LIST, CREATE, MODIFY and note where to use which option.