The DevCentral Chronicles July Edition 1(7)
July is my favorite month due to it being both the middle of summer and I was born in July. This month I’ll drip of perspiration and celebrate another twist in the odometer of life. It’s also time for our monthly Chronicles where we keep you updated on DevCentral happenings and highlight some of the cool content you may have missed since the last issue. You can always catch up with the links at the bottom. Welcome! With #F5Agility18 right around the corner August 13-16, 2018, let’s kick off this edition with John Wagnon‘s Capture The Flag at Agility 2018. Happening Tuesday night Aug 14, block your calendar for our #Geekfest event, Hack to the Future! This year, for the first time ever during our Agility conference, we will host a Capture The Flag game. The game is designed for eight teams (4 people per team) to compete against one another to see who can capture the most flags, earn the most virtual money, and keep their web application safe from attack. The teams will be chosen prior to the event, so if you want to be included in one of the teams, make sure you reach out to your SE and get the invitation. DevCentral MVP’s Kai, Stan, Leonardo & Nathan with Bart as Pit Boss will also participate. The entire evening will be themed with tons of cool 80s stuff related to the classic movie series. Next, we’d like to recognize F5 Systems Engineer, Steve Lyons for his prowess over the last month. First, Steve is one of our most engaged SE’s amplifying our social channel at every tweet; he published three, in-depth articles Configuring the BIG-IP as an SSH Jump Server using Smart Card Authentication and WebSSH Client, Configuring Certificate Based Authentication and Kerberos Constrained Delegation in F5 Access Policy Manager (APM) and Configuring Endpoint Security (Client-Side) Using F5 Access Policy Manager (APM); in addition to answering 5 questions from members. He’s highly active and has the technical know-how to help. Follow Steve @SteveLyonsF5 Jason Rahm and his infinite knowledge continued his python series with Getting started with the python SDK part 5: request parameters revisited and also replied to a twitter question from @CISCO_World with a full article about Duplicating BIG-IP Objects about how to copy a virtual server. For the developer crowd, ENE Satoshi Toyosawa added his iControl REST Cookbook - Virtual Server Profile (LTM Virtual Profiles). For cloud folks, Chase Abbott shows off Application Auto Scaling Through BIG-IP Cloud Edition and for security, John lit up Introducing F5 DataSafe in his #LightboardLesson. And in closing, Rhazi Youssef from e-xpert Solutions is our Featured Member for July and is the third engineer we've featured from e-Xpert Solutions SA. We look forward to seeing you in Boston for Agility and as always, you can stay engaged with @DevCentral by following us on Twitter, joining our new LinkedIn Showcase page or subscribing to our YouTube Channel. Look forward to hearing about your BIG-IP adventures. The Chronicles: Volume 1, Issue 1 Volume 1, Issue 2 Volume 1, Issue 3 Volume 1, Issue 4 Volume 1, Issue 5The DevCentral Chronicles June Edition 1(6)
Heading into the summer months is always a nice time of year – school is out, warmer weather, BBQs, beaches, baseball and maybe some vacation time. And hopefully all the Dads had a nice Father’s Day as we dive into our 6 th installment of the DC Chronicles. The Chronicles are intended to keep you updated on DevCentral happenings and highlight some of the cool content you may have missed since the last issue and you can always catch up with the links at the bottom. Welcome! We had 20 new articles published since Volume 1, Issue 5, including 5 new Lightboard Lessons! We really enjoy making these and you, the audience, certainly express your enjoyment in watching. John Wagnon lit some cool security related topics like, Explaining TLS 1.3, What Are AEAD Ciphers? and The TLS 1.3 Handshake while Jason Rahm drew up the F5 software lifecycle and BIG-IP Cloud Edition Overview. Since we’re on Cloud, Chris Zhang also wrote up how to Achieve firewall high-availability in Azure with F5. We also published a bunch of materials about our new BIG-IP Cloud Edition. BIG-IP Cloud Edition is designed to enable easy to use and fast self-serve deployments of application services in private and public clouds and is composed of BIG-IP Per-App VEs and BIG-IQ CM 6.0. To get the scoop, you can check out the BIG-IP Cloud Edition FAQ, Building Applications For The Rest Of Us With BIG-IQ 6 and Skies Never Looked So Good With BIG-IP Cloud Edition. DevCentral’s Chase Abbott lays out the details. Moving from Cloud to Security, several vulnerability mitigations from our SIRT team dropped recently. You got coverage for Remote Code Execution with Spring OAuth Extension (CVE-2018-1260), a New BIG-IP ASM v13 Drupal v8 Ready Template, and a New BIG-IP ASM v13 WordPress v4.9 Ready Template. Also filed under Security, Steve Lyons showed how to Configure Smart Card Authentication to BIG-IP Management Interface. Other highlights include Lori MacVittie’s Three HTTP Routing Patterns You Should Know with Eric Chen’s follow on, SNI Routing with BIG-IP. Chen also gives us Clone Pool Across L3 explaining how you can use the “clone pool” feature to copy traffic to an IDS and/or network monitoring device. Jason continues his Getting started with the Python SDK series covering Working with Statistics and Working with Request Parameters and finally, Jie Gao was DevCentral's Featured Member for June. As always, You can stay engaged with @DevCentral by following us on Twitter, joining our LinkedIn Group or subscribing to our YouTube Channel. Look forward to hearing about your BIG-IP adventures. The Chronicles: Volume 1, Issue 1 Volume 1, Issue 2 Volume 1, Issue 3 Volume 1, Issue 4 Volume 1, Issue 5The DevCentral Chronicles Volume 1, Issue 5
Is it May already? Did you enjoy your ‘May the Fourth’ along with ‘Revenge of the Sixth’? For me, May is filled with a bunch of family holidays along with Mother’s Day, of course. May also falls perfectly for our 5 th installment of the #DC Chronicles. If you missed our initial issues of the DC Chronicles, you can catch up with the links at the bottom. The Chronicles are intended to keep you updated on DevCentral happenings and highlight some of the cool content you may have missed since the last issue. Welcome! We’re only 3 months away from #F5Agility18 in Boston, August 13-16! You can hang out with the DevCentral team and many MVPs will also be in attendance to share their expertise. Our team is prepping some sessions and look forward to socializing with the community. Get the details here and now's the time to register for F5 Agility 2018 and lock in your labs and sessions. Also, Early Birds get $300 off the registration fee Through May 18! If you haven’t heard, BIG-IP Cloud Edition is will be available soon! BIG-IP Cloud Edition is built by tightly integrating BIG-IQ Centralized Management and BIG-IP Per-App VEs to deliver advanced application services and management. You can autoscale, offer self-service management for app owners, and per-app analytics. We got a couple cool pieces covering Cloud Edition: Chase’s Skies Never Looked So Good With BIG-IP Cloud Edition where he explains all the pieces of the pie and also check out Jason’s Lightboard Lessons: BIG-IP Cloud Edition Overview. We also dropped a couple other #LightBoardLessons for your viewing pleasure covering some of our new Security solutions. John lights up the DDoS Hybrid Defender and introduces us to the new F5 Advanced WAF. DDoS Hybrid Defender offers comprehensive DDoS threat coverage in a simple, dedicated appliance with native, cloud-based scrubbing services and the awesome Advanced WAF protects against the latest attacks using behavioral analytics, proactive bot defense, and application-layer encryption of sensitive data. Couple of cool tools to help mitigate internet threats. Mitigate threats you say? There will always be vulnerabilities in the wild and depending on the type of threat, we’ll typically have some mitigation techniques to share. Our SIRT (Security Incident Response Team) folks are always examining the murk out there and sharing insights. This past month is no different with mitigation techniques for Remote Code Execution with Spring Data Commons (CVE-2018-1273), Directory Traversal with Spring MVC on Windows (CVE-2018-1271) and the Drupal Core Remote Code Execution (CVE-2018-7602). In a few cases, BIG-IP ASM customers were already protected by the existing signatures! As we wrap up this edition, we’d also like to point out @GrahamAlderson‘s new video series AppSec Made Easy with examples for Anti-Bot for Mobile APIs, Proactive Bot Defense, L7 Behavioral DoS and a couple more this week. And we’d be remiss if we didn’t call out Bank of America’s Jai Kumar as our Featured Member for May! As always, You can stay engaged with @DevCentral by following us on Twitter, joining our LinkedIn Group or subscribing to our YouTube Channel. Look forward to hearing about your BIG-IP adventures. ps The Chronicles: Volume 1, Issue 1 Volume 1, Issue 2 Volume 1, Issue 3 Volume 1, Issue 4
