tmsh commands

1) Displays memory information

tmsh show /sys tmm-info

2) tmsh load sys config partitions all

Display network information

#tmsh
#net
#show interface 

or 

#show interface 1.5 (where 1.5 is the interface key)

Load balancing Microsoft Active Directory LDAP

Steps to load balance Microsoft active directory ldap servers

1) Login to F5 BigIP LTM https://loadbalancerip

2) Create a ldap monitor 

    Main -> Local Traffic -> Monitors -> Monitor List -> Create

2) Create a pool

    Main -> Local Traffic -> Pools -> Pool List -> Create

3) Add pool members to the ldap-ad pool created in the previous step

    Main -> Local Traffic -> Pools -> Pool List -> ldap-ad -> Members

4) Create a virtual server

    Main -> Local Traffic -> Virtual Servers -> Virtual Server List -> Create

LDAP servers are ready for load balancing.

F5 setup for Lotus Sametime

Virtual Server	Pool	Monitor
sametime-community	sametime-community	sametime-http
virtual ip	server1 ip	Interval 30
port 1533	server2 ip	Timeout 91
tcp_lan_optimized (Server and Client profiles)	port 1533	Send String GET /names.nsf?login HTTP/1.0\r\n\r\n
Source Address Affinity (persistence)	Least Connections (Node)	Receive String Log In
Snat automap
sametime-meetings	sametime-meetings	sametime-tcp
virtual ip	server1 ip	Interval 30
port 8081	server2 ip	Timeout 91
tcp_lan_optimized (Server and Client profiles)	port 8081
Source Address Affinity (persistence)	Least Connections (Node)
Snat automap
sametime	sametime	sametime-http
virtual ip	server1 ip	Interval 30
port 80	server2 ip	Timeout 91
tcp_lan_optimized (Server and Client profiles)	port 80	Send String GET /names.nsf?login HTTP/1.0\r\n\r\n
Source Address Affinity (persistence)	Least Connections (Node)	Receive String Log In
Snat automap
http profile

iFile list - F5 hosting files

iFile list is really a cool feature which allows F5 to host files via iRule.

1) Upload your static resources - e.g. file named wpad.dat
System -> File Management -> iFile List -> Import
Choose your file and provide a label (e.g. wpad-file)
Make sure free disk is available.

2) Create an iRule
Local Traffic ->  iRules ->  iRule List

when HTTP_REQUEST {
    if { [HTTP::uri] eq "/wpad.dat" } {
        HTTP::respond 200 content [ifile get  wpad-file]
    }
    else { discard }
}

3) Associate iRule with virtual server

4) Access the file
http://virtual-server-ip/wpad.dat

Finding serial no

BigIP 10.x version

Serial no. format f5-xxxx-xxxx

Command line
Login into console (advanced shell)
tmsh show sys hardware | grep -i chassis

Output will look like:
Chassis Serial f5-xxxx-xxxx

(or)
b platform | grep -i serial

Output will look like:
Chassis   serial f5-xxxx-xxxx


GUI
System -> Configuration -> Chassis Serial Number

iRule to route traffic to different pools

1. Set the virtual server to ipaddress:any


2. Associate iRule
when CLIENT_ACCEPTED { if {[TCP::local_port] equals 5000} { pool mypool1} elseif {[TCP::local_port] equals 5001} { pool mypool2}}

Configuring syslog

1) SSH into F5 management IP as admin with advanced shell

2) Execute the commands
2a) #bigpipe syslog remote server {my-syslog-server1 {host syslog-server-ip-address} my-syslog-server1 {host syslog-server-ip-address}}

Examples:
#bigpipe syslog remote server {mysolarwinds {host 10.101.102.103}}
#bigpipe syslog remote server {mysplunk {host 10.101.102.104} my-arcsight {host 10.101.102.105}}

2b) #bigpipe save

3) Restart syslog-ng utility
#bigstart restart syslog-ng

4) Verify

#b syslog remote server show