create multiple VIPs on F5 using AS3 JSON File and Dynamic Variables
I want to create multiple VIPs using a single piece of code - example dynamic variables in TFVARS. resources like application name , VIP Name, VIP IP Address, Irule, Profile, Backend Pool should be taken as input in the Tfvars file. Does anyone have a sample code for the same- I am using the following .tf file- ================ # Terraform code for AS3 resource "bigip_as3" "as3-f5-VIPS" { as3_json = file("as3.json") }
Deploying F5 WAF in front of Azure Web App Services
Does anyone know of a supported architecture for deploying an Azure F5 WAF in front of Azure Web App Services to handle the SSL and ASM services against traffic destined for an Azure Web App Service (App Service not just an app server running in Azure).DNS big3d timeouts from one BIG-IP device
Hello Guys, I have an issue adding self-ip of Ltm of different partition to GTM we have LTM that consist different partitions On LTM First partion has already been integrated to GTM which works perfectly fine But whenever I added self-ip of Second partition to Object Sever of the same LTM on GTM The Virtual Server of the First Partition becomes offline while Virtual Server of the Second becomes Offline. Once I remove the Self-IP of the Second Partition the VS of the First back online. I ran show gtm iquery it shows connected for both self-ips but Virtual Server of the First Partition becomes offline. with big3d timeout error message. I am thinking of creating another server object for the second partition thinking it might work Kindly advice.
Cannot get decryption happening with F5 SWG
Hi; I have implemented F5 SWG as per this article: https://techdocs.f5.com/kb/en-us/products/big-ip_apm/manuals/product/apm-secure-web-gateway-implementations-11-5-0/4.html My understanding is that the setup here should cause decryption to take place on the virtual server for ssl forward proxy traffic "the one with a client and server SSL profiles". Yet this is not working for me. To be specific, I can see traffic hitting the virtual server for ssl forward proxy traffic, but I don't see encryption happening on the server ssl profile. This is confirmed by looking at the certificate issuer, which is not that associated with the server SSL profile but rather the original one. Please note that I am not doing any authentication for now. Kindly Wasfi
F5 API Security on AWS WAF
Hello community, We have deployed multiple APIs on EKS and have exposed them using an application load balancer. I have added AWS WAF on top of the ALB. I am using XML payload in the API and for XML security, I have enabled F5 API Security managed rule for WAF. My question is: Does F5 managed rule for API Security on AWS WAF provides XML validation? If yes, what rule is that inside the managed rule set? Can we configure the F5 managed rule to check my XML payload based on regex? How can I configure it? Thanks in advance! Avinash
