This course gives network administrators, network operators, and network engineers a functional understanding of the BIG-IP system as it is commonly deployed in an application delivery network. The course introduces students to the BIG-IP system, its configuration objects, how it processes traffic, and how typical administrative and operational activities are performed. The course includes lecture, hands-on labs, interactive demonstrations, and discussions.
- Describe the role of the BIG-IP system as a full proxy device in an application delivery network
- Set up, start/restart/stop, license, and provision the BIG-IP system out-of-the-box
- Create a basic network configuration on the BIG-IP system including VLANs and self IPs
- Use the Configuration utility and TMSH to manage BIG-IP resources such as virtual servers, pools, pool members, nodes, profiles, and monitors
- Create, restore from, and manage BIG-IP archives
- View resource status, availability, and statistical information and use this information to determine how the BIG-IP system is currently processing traffic
- Use profiles to manipulate the way the BIG-IP system processes traffic through a virtual server
- Perform basic troubleshooting and problem determination activities including using the iHealth diagnostic tool
- Support, and view traffic flow using TCPDUMP
- Understand and manage user roles and partitions
- Configure and manage a sync-failover device group with more than two members
- Configure stateful failover using connection mirroring and persistence mirroring
- Getting started with the BIG-IP system
- Traffic processing with BIG-IP Local Traffic Manager (LTM)
- Using TMSH (TMOS Shell) command line interface
- Using NATs and SNATs
- Monitoring application health and managing object status
- Modifying traffic behaviour with profiles, including SSL offload and re-encryption
- Modifying traffic behaviour with persistence, including source address affinity and cookie persistence
- Troubleshooting the BIG-IP system, including logging (local, high-speed, and legacy remote
- logging), and using TCPDUMP
- User roles and administrative partitions
- vCMP concepts
- Configuring high availability (including active/standby and connection and persistence mirroring)
Major Course Changes since v13
- Default admin/root accounts passwords are now expired by default on new installations. A discussion on this change of behaviour is now available, and labs have been updated accordingly.
- The Cookie persistence section and labs are no longer included in this course. This content has been moved to the Configuring LTM curriculum.
- A new chapter, Configuring and Managing a High Availability Environment (formerly in the Configuring LTM class) is now included in this course.
- The iRules chapter has been removed from this course.
Course length: 2 days
This course is intended for network administrators, operators, and engineers responsible for managing the normal day-to-day operation and administration of a BIG-IP application delivery network. This course presents the prerequisite knowledge for many other of F5’s BIG-IP instructor-led training courses.
The following free web-based training courses, although optional, will be very helpful for any student with limited BIG-IP administration and configuration experience. These courses are available at F5 University:
The following general network technology knowledge and experience are recommended before attending any F5 Global Training Services instructor-led course:
- OSI model encapsulation
- Routing and switching
- Ethernet and ARP
- TCP/IP concepts
- IP addressing and subnetting
- NAT and private IP addressing
- Default gateway
- Network firewalls
- LAN vs. WAN
Configuring BIG-IP LTM: Local Traffic Manager
This course gives network professionals a functional understanding of BIG-IP Local Traffic Manager, introducing students to both commonly used and advanced BIG-IP LTM features and functionality. Incorporating lecture, extensive hands-on labs, and classroom discussion, the course helps students build the well-rounded skill set needed to manage BIG-IP LTM systems as part of a flexible and high performance application delivery network.
- Back up the BIG-IP system configuration for safekeeping
- Configure virtual servers, pools, monitors, profiles, and persistence objects
- Test and verify application delivery through the BIG-IP system using local traffic statistics
- Configure priority group activation on a load balancing pool to allow servers to be activated only as needed to process traffic
- Compare and contrast member-based and node-based dynamic load balancing methods
- Configure connection limits to place a threshold on traffic volume to particular pool members and nodes
- Differentiate between cookie, SSL, SIP, universal, and destination address affinity persistence, and describe use cases for each
- Describe the three Match Across Services persistence options and use cases for each
- Configure health monitors to appropriately monitor application delivery through a BIG-IP system
- Configure different types of virtual services to support different types of traffic processing through a BIG-IP system
- Configure different types of SNATs to support routing of traffic through a BIG-IP system
- Configure VLAN tagging and trunking
- Restrict administrative and application traffic through the BIG-IP system using packet filters, port lockdown, and virtual server settings
- Configure SNMP alerts and traps in support of remote monitoring of the BIG-IP system
- Use an F5-supplied iApp template to deploy and manage a website application service
- Use iRules and local traffic policies appropriately to customize application delivery through the BIG-IP system
- Configure the BIG-IP to detect and mitigate some common attacks at the network and application layers using LTM features such as SYN check, eviction policies, iRules and Local Traffic Policies
- BIG-IP initial setup (licensing, provisioning, and network configuration)
- A review of BIG-IP local traffic configuration objects
- Using dynamic load balancing methods
- Modifying traffic behaviour with persistence (including SSL, SIP, universal, and destination address affinity persistence)
- Monitoring application health with Layer 3, Layer 4, and Layer 7 monitors (including transparent, scripted, and external monitors)
- Processing traffic with virtual servers (including network, forwarding, and reject virtual servers)
- Processing traffic with SNATs (including SNAT pools and SNATs as listeners)
- Modifying traffic behaviour with profiles (including TCP profiles, advanced HTTP profile options, caching, compression, and OneConnect profiles)
- Advanced BIG-IP LTM configuration options (including VLAN tagging and trunking, SNMP features, packet filters, and route domains)
- Deploying application services with iApps
- Customizing application delivery with iRules and local traffic policies
- Securing application delivery using BIG-IP LTM
Major Course Changes since v13
A new chapter covering securing application delivery using LTM features (such as SYN check, eviction policies, iRules and Local Traffic Policies) is now available. The Configuring and Managing a High Availability Deployment chapter is no longer included in this class (now available in the Administering BIG-IP course).
Course length: 3 days
This course is intended for system and network administrators responsible for installation, setup, configuration, and administration of the BIG-IP LTM system.
Students are required to complete one of the following F5 prerequisites before attending this course:
The following course-specific knowledge and experience is suggested before attending this course:
- Web application delivery
- HTTP, HTTPS, FTP and SSH protocols
This course will be taught in English, but please note that the instructor also speaks French.