-
Terraform in Ubuntu
I have utilized the following steps to install terraform in Ubuntu 16.04 Download Terraform for Linux 64 bit version. Save the downloaded version in a specific folder. (Example: /home/user/terra) Within the folder where the downloaded version is saved, use “unzip” command: unzip terraform Set the path: export PATH=$PATH:/home/user/terraform Reference Link.
-
iRule HTTP Referer
This is a simple iRule that performs redirects based on HTTP Referer: when HTTP_REQUEST { if { ([HTTP::header exists “Referer”]) and ([URI::host [HTTP::header value Referer]] eq”special.com”) } { HTTP::redirect https://www.site.com/special-client/ } else { HTTP::redirect https://www.site.com/generic-client } }
-
Ansible Components
What? Ansible is a simple IT automation tool. Ansible exists as CLI & GUI. GUI is called the Ansible Tower and Ansible, Inc., which is owned by RedHat, officially supports this. Controlling Nodes: The Network infrastructure is managed from these Controlling Nodes. In an Enterprise environment, Controlling Nodes are typically Linux bastion servers. Managed Nodes: Managed Nodes […]
-
F5 Logs
F5 logs are available under /var/log/ directory. If you are looking for LTM traffic related logs, look under /var/log/ltm If you are looking for GTM traffic related logs, look under /var/log/gtm GTM has been renamed as DNS from 12.x code version. The logs are rotated every 24 hours. There will be one ltm file that […]
-
Kubernetes Intro
Kubernetes is Greek for Pilot or Helmsman. It is primarily used as an orchestration tool for containers. Kubernetes Deployment (KD): Deployment is responsible for creating and updating instances of application. Kubernetes Master (KM): KM schedule the application instances that was created by the KD onto individual nodes in the cluster. Kubernetes Deployment Controller (KDC): KDC […]
-
Thoughts on F5 Deployment
This is a simplified check list for GTM & LTM deployment based on my experience. Don’t deploy GTM in HA pair in a single DC: GTM devices work in a synchronization group across geographic regions. If you deploy GTM-1 in DC-1 and GTM-2 in DC-2, these 2 GTM devices will serve as Active-Active HA Pair […]
-
F5 TMM Crash
We were using a DNS VS listening on port 53 but configured to handle TCP protocol as shown here: ltm virtual /Common/VS_DNS { destination /Common/10.10.10.10:53 ip-protocol tcp mask 255.255.255.255 pool /Common/pool_dns profiles { /Common/tcp { } } source 0.0.0.0/0 source-address-translation { pool /Common/SNAT-10.10.10.10 type snat } translate-address enabled translate-port enabled } An iRule was using […]
-
Cisco Nexus – Ping Sweep
The following script can be utilized to execute a ping sweep of a /24 network on Cisco Nexus switch. This has been tested and verified on Cisco Nexus 7K running 6.2.8a code version. Actual script: tclsh for {set i 1} {$i < 255} {incr i} { cli “ping 192.168.1.$i count 2 time 1 vrf VRF_A” […]
-
IPSec VPN – Key Terms
The following article is a brief introduction to IPSec VPN that is utilized to provide a logical connection between 2 sites (Site to Site) or a client and a site (Client to Site). The article is written to provide the key terms behind IPSec VPN implementation in a Cisco ASA Firewall or any other similar […]
-
F5 Certification – Concepts
F5 certification bridges the gap between Networking and Advanced Application Layer Stack. It takes about 8-12 months to develop a test. I was fortunate to be part of the Item Development Workshop (IDW) for F5 201v2 exam and wanted to share some of the information I learned during the IDW. Key Development Concepts utilized during […]