BIG-IP AS LOAD BALANCER

Dynamic load balance

To set a dynamic load balancer to follow the below process.

From list choice which type of balancing you want.

 

Priority-based Pool Member Activation

 

Set priority and a ratio

1^st set load balancing method then group activation. In our senior, if the number of active node less than two then blue node automatic activated.

Ratio-Based

For red and green server same ratio and group 

 

And for blue

Now check how the request coming.

1^st clean old history then generates some traffic by refresh page on browser then check what the status.

 

Here we can see “blue” node have no any hit. If any node ( Red or Green ) un-available then blue node automatic take place.

Then reset statistics and again generate some traffic. Here we can see the blue node take place.

Take reference from @cbt_nuggets_Video

Add virtual machine object.

Here we are going to add one virtual server object, which is accessible from the outer world and in BIG-IP we add three virtual machine which is a web server.

On BIG-IP interface follow "Local traffic – Virtual Server list " then New Virtual Server.

    

 

 

 

 

 

 

 

 

Finally, we have a virtual machine.

Then you can access this virtual machine from a browser.

When you refresh browser again and again then its call one by one “Red Green and Blue server” because in pool setting we have the following configuration.

  

Take reference from @cbt_nuggets_Video

SNAT Pools

Source Network Address Translation (source-nat or SNAT) allows traffic from a private network to go out to the internet. … The gateway has one arm on the public network and as part of SNAT, it replaces the source IP of the originating packet with its own public side IP.

 

First, create SNAT pool list and add member node.

 Then change setting in virtual server and select profile.

 

 Select the SNAT pool which is created.

On wire shark we can see following communication.

Take reference from @cbt_nuggets_Video

Client-side IPv6

In this example, we can see how we redirect all IPv6 request, which is coming as a request (client side), are served by the node using BigIP.

In this example, we can see client using IpV6 and node configured on Ipv4.

To configure follow this process.

Here we are going to create one IpV6 interface on BigIP.

       Here we have two IPv6 interfaces on external VLAN.

     

Add routing in BigIP.

And finally, we achieve below goal.

 

Take reference from @cbt_nuggets_Video

LTM setup

Diagram, which is follow during practical.  

1^st add node in BIG-IP

     

Repeat it for second (22) and third (33) IP also.

Finally, we have three node.

Now we create POOL.

Download Full Document.

Take reference from @cbt_nuggets_Video

HA Concepts

Main Points:-

• Here we setup two BIG-IP appliance.
• One time only one device in active mode other device in standby mode.
• The switching between the devices is manage by itself by BIG-IP appliance.
• The floating address 10.2.0.155 is respect by both BIG-IP appliance as a source address for internal network.

  

 

HA Configuration

Create backup of current configuration.

 

 

 

 

 

 

 

 

 

 

 

Download Full Document.

Take reference from @cbt_nuggets_Video

 

IRules

• An iRules, in its most simple terminology, is a script that executes against network traffic passing through an F5 device.
• iRules can route, re-route, redirect, inspect, modify, delay, discard or reject, log or … do just about anything else with network traffic passing through a BIG-IP.

 

In this example, we redirect HTTP request to https using iRules.

    

Auto error detects in a script if any syntax error.

In addition, iRule editor present for writing script.

 

Some pre-define rules are also as an example.

To apply iRule follow below process.

Click on “Resources”

Then Click on “Manage”

.

.

Download Full Document.

Take reference from @cbt_nuggets_Video

IApp configuration in BIG-IP

What the purpose of iApp:-

• It’s save for any miss happening with configuration.
• There are lot of changes during node creation, pool creation and virtual machine creation like redirection, NAT, SNAT, One Connection setting…Etc.
• It is possible to by any system administrator change in setting and we lost our connection or setting.
• To prevent these changes we create iApp object, which make a new object and not effected by manual changes by any one.   
• Once iApp created then we cannot directly modify the configuration. Only using iApp.

 

To create iApp follow steps.

  

Customize setting as per our requirement.

Select parent template “f5.http”, put IP address, access port, select http pool…Etc.

Finally, we have bellow object setting which is totally independent from main configuration.

Log Management Tools

 

Open Dashboard to details view.

 

Adding virtual server.

Steps:-

1. Create three virtual machine
2. Connect network adapter to internal VLAN
3. Turn on VM

Step 1. Create virtual machine with apache web service where in 1^st machine example page show like bellow to easily identify.

Same for Green and Blue.

Step2. Each server must be connected with right VLAN.

 

Step3. Then on all VM.

Then check all VM from BIG-IP server, is it connected or not.

Download document file which covers these topics:-

• Add Node
• Load Balancer
• NAT
• SNAT
• OneConnect
• SSL
• BIG-IP
• Color-code

Download Full Document.

Take reference from @cbt_nuggets_Video

Download BIG-IP from the official site of F5 (https://www.f5.com/trials) and start it.

These a are a basic configuratia on of a lab.

 

The default password of root is “default” and for GUI interface username is “admin” and password is also “admin”.

Access web interface of big-ip.

               

Activate license(From f5 site we can take a trial license for 30-90 days).

Download document file which covers these topics:-

• Activation,
• Standard network configuration
• External network
• HA network configuration

Download Full Document.

Take reference from @cbt_nuggets_Video