You can follow SOL13151 in order to increase the packets/sec value. However, I would caution against doing it or at least recommend keeping the value smaller. The default setting is in place to prevent the F5 from overwhelming its resources by sending out RST. This could potentially … “F5 – RST or ICMP Packet Rate”
Read More
F5 utilizes iControl REST API as part of their automation toolkit. REST API is a powerful way to automate F5 management. iControl REST API was introduced by F5 in 11.5 code version. 11.6 code version is the first major code version with a relatively stable … “F5 iControl REST”
Read More
This is a simple iRule that performs redirects based on HTTP Referer: when HTTP_REQUEST { if { ([HTTP::header exists “Referer”]) and ([URI::host [HTTP::header value Referer]] eq”special.com”) } { HTTP::redirect https://www.site.com/special-client/ } else { HTTP::redirect https://www.site.com/generic-client } }
Read More
K14318 – Identifying expired certs and certs about to expire in 30 days. K15288 – Email reminder for cert expiration. A few one-liners from bash to identify the cert expiration date: Identifying the expiration date from the certificate name: ~ # tmsh list sys file … “F5 – SSL Cert Expiration”
Read More
The VS order of predence differs with code version and the tm.continuematching db variable. This tm.continuematching db variable is set to false by default and hence, a lower predence VS does not handle the traffic if there exists an higher predence VS in a disabled … “F5 Virtual Server – Order of Precedence”
Read More
Scenario: A Virtual Server is load balancing connections to a pool with 2 pool members. During maintenance window, one of the two pool members is disabled and maintenance is completed followed by the other pool member. However, as the users make continuous API calls every … “F5 – Bleeding Active Connections”
Read More
This is a copy/paste of a Q&A in devcentral. I didn’t change it as it is quite descriptive and gets the point across. Current Setup: We are using Cookie Insert method for session persistence. So LTM adds “BigipServer*” Cookie in the http response header with … “OneConnect & HTTP Requests”
Read More
Purpose: This is a really simple way to automate CLI command execution on multiple F5 devices using Bash & TCL scripting. The scripts have been tested on a linux and a mac machine. How to use it: There is a bash script (F5_Bash_v1) that is … “F5 – Automating CLI Execution”
Read More
F5’s TMM crashes when we run any of these 2 commands: show ltm persistence persist-records or show sys conn and escaping the execution with “ctrl+c” or any other similar escape character will cause the tmm to crash as noted in the solution article. Reference: SOL16387
Read More
A week ago, I was upgrading HA F5 pair from 11.5.1 to 11.5.3 and noticed the existence of default “device_trust_group” in sync-only mode in GUI. I did not create it but it just showed up and there wasn’t a way to delete it. Apparently, this … “F5 v11.x Device Trust Group”
Read More