About arp.gratuitousrate and arp.gratuitousburst database variables
Hello, I recently checked that the db variable value of arp.gratuitousrate on a device using tmos 10ver is 1. As far as I know, the default value is (tmos 17ver) 0. My question is two things. First question. What is the meaning of the variable in arp.gratuitousrate? If it is 1, does it send garp one per second? Then what does 0 mean? Second question. The existing device does not have a db called arp.gratuitousburst (10ver), so what is the role of this db? Thank you.
Unable to "accept" a HTTP protocol compliance failed violation that is of "HTTP Parser Attack type
While- I try to "accept" the HTTP protocol compliance violation for HTTP Parser attack type, I find the "accept" button greyed out and instead I getting the message "unlearnable request". How do I understand and allow these kind of requests, so that I can ensure that these requests are not blocked.Global Live Webinar(07/31): Kubernetes Connectivity Evolved: NGINX Gateway Fabric
Kubernetes Connectivity Evolved: NGINX Gateway Fabric Global Live Webinar(07/31): Kubernetes Connectivity Evolved: NGINX Gateway Fabric Date: July 31, 2024 Time: 10:00am PT | 1:00pm ET Speakers: llya Krutov - Product Marketing Manager, F5 NGINX Akash Ananthanarayanan - Technical Marketing Manager, F5 NGINX Mike Stefaniak - Sr. Product Manager, F5 NGINX What's the webinar about? Are you grappling with the intricacies of Ingress controllers and service meshes in Kubernetes? You're not alone. These traditional methods can lead to a variety of challenges including complexity, overhead, and compatibility issues. We're excited to introduce NGINX Gateway Fabric, a groundbreaking platform tool that redefines application delivery within Kubernetes. This unified fabric is crafted to eliminate the headaches associated with app, service, and API connectivity. Our expert speakers will delve into the nuances of deploying NGINX Gateway Fabric, sharing invaluable insights on best practices and self-service governance for robust, secure, and fast connectivity. This session is a must-attend for Platform Architects & Engineers, DevOps teams, and System Administrators who are keen to build a resilient and future-proof Kubernetes environment. đź’ˇ Key Takeaways: Discover the strategic advantages of the Kubernetes Gateway API, independent of Ingress controllers. Learn to seamlessly address complex Kubernetes connectivity scenarios with NGINX Gateway Fabric. Understand the ecosystem's native interoperability, including hands-on integrations with tools like Prometheus and Grafana. Don't miss this opportunity to stay ahead in the Kubernetes sphere. Join us in paving the way for a smarter, more efficient connectivity framework with NGINX Gateway Fabric. To register, click hereGlobal Live Webinar(08/06): Elevate security by modernizing your BIG-IP
Elevate security by modernizing your BIG-IP This webinar event is open to all F5 users regardless of geographic location. Date: Tuesday, August 6, 2024 Time:10:00am PT | 1:00pm ET Speakers: Tom Atkins, F5 and Matt Shaw, F5 What's the webinar about? How do you secure your organization in today's ever-evolving threat landscape? As cyberthreats continue to advance in complexity, it’s imperative to stay ahead with a cutting-edge security posture. Join us for an insightful webinar where we’ll delve into the importance of upgrading your F5 BIG-IP solutions to not only enhance security but boost performance and unlock valuable new capabilities. In this webinar we’ll cover these topics: Staying Ahead of the Curve Keep your F5 BIG-IP software up to date to avoid end-of-lifecycle complications and mitigate evolving cyberthreats and newly discovered vulnerabilities. Boosting Performance and Automatability with rSeries Explore the unparalleled value of upgrading to F5's next-generation hardware system—F5 rSeries—with its superior performance and automatability to lay the foundation for a secure, scalable, and agile environment. Enhancing Performance and Cloud Freedom with the latest BIG-IP Virtual Edition (VE) Dive into the benefits of upgrading to the latest BIG-IP VE software—which includes gaining greater multicloud freedom, reducing cloud operating costs, and obtaining superior performance. Beginning Your Transition to BIG-IP Next Get introduced to F5’s revolutionary next-generation BIG-IP software—BIG-IP Next—and see how it simplifies operations, mitigates risk, bolsters resiliency, and enhances observability. Learn more, register now
APM parse HTTP Connector json to message box, iRule etc.
Hello all, I have configured per-session and per-request policies on my APM (APM+LTM) mode and in the process of authentication I want to get some data from external web server. Data is in JSON format. To do that I have created HTTP Connector, assigned it to my per-request policy via subroutine and i can see that the subsession variables are beeing populated correctly via the HTTP Connector (with option save data, i can parse it but the result is the same, just more variables - one per JSON field). In the Overview:Active Session i can see subsession with the following variable with my data: 879cb369./Common/HTTPConnector/XXXXXXXXXXX==.nvp_block.subsession.http_connector.body Now I wanted to get this data and use it in my authentication flow and iRule but it doesn't work. First I wanted to test it, by assiginig variable and showing a simple message box in PerReq-policy: And after that the massage box with: %{perflow.custom} - it doesnt work. Also tried to just show it in logs with iRule like in documentationltm rule command ACCESS perflow (f5.com) So i created an iRule agent in per-request-policy pointing to bellow iRule and attached iRule to my VS: when ACCESS_PER_REQUEST_AGENT_EVENT { set $body [ACCESS::perflow get subsession.http_connector.body] log local0. $body } But it doesnt show anything. I have few questions: Is it even possible to access variables in subsession that got retrieved via HTTPConnector and use it further? For example to build JWT for auth? Can I assign more than two custom variables from subsession? according to this guide i can only use perflow.custom and perflow.scratchpad?: Using Variable Assign to populate gating criteria,Using Variable Assign to populate gating criteria,Using Variable Assign to populate gating criteria (f5.com) Using Variable Assign to populate a perflow variable other than perflow.custom and perflow.scratchpad causes subroutine results to become unreliable. 3. Maybe there is an other option to achieve my goal?Global Live Webinar(07/25): The AI Tsunami: Is Your API Security Ready for the Perfect Storm?
The AI Tsunami: Is Your API Security Ready for the Perfect Storm? Date: July 25, 2024 Time: 10:00am PT | 1:00pm ET What's the webinar about? The rise of AI is not all hype and frenzy. There are real implications—for productivity and competitiveness, and for governance and compliance. Every organization will have to evaluate how AI apps impact their business. We’ve already reached an untenable state of risk and complexity with the rapid evolution of apps into API-based systems. Adding AI into the mix is like pouring gasoline on an already burning ball of fire. Multi-model and multimodal LLMs along with expanding AI ecosystems drive multicloud architectures—and they’re all connected by APIs. It is imperative that architects and security teams unpack the massive risk surface for AI apps— and see why AI must be embraced by defenders to tango with adversarial AI that has democratized and supersized attacker arsenals. In this webinar, we’ll cover: Explore the fundamentals of AI such as Large Language Models, training, and inference. Show the importance of secure multicloud networking and API security for delivering, protecting, and optimizing AI-enhanced digital experiences. Highlight how F5 API security solutions are AI-ready and can help you safely unleash innovation. To register, click here
Problems connecting to vpn after upgrading to ubuntu 24.04
good afternoon, I have upgraded ubuntu to 24.04 and since then I can no longer connect correctly to the vpn with the f5 client. In the client it appears that I am connected to the vpn, but then I do not reach any of the sites and servers that with the 22.04 version if it arrived. Can you help me.
authentication failure when setup new password
Hi When I setup a new F5, I got anthentication issue. Please see below. After I was required to change password, I created new password, but I got authentication issue. I do not know what is wrong? Anyone can provide suggestion? Thank you BIG-IP 15.1.0 Build 0.0.31 Kernel 3.10.0-862.14.4.el7.ve.x86_64 on an x86_64 localhost login: root Password: You are required to change your password immediately (root enforced) Changing password for root. (current) UNIX password: Authentication failure BIG-IP 15.1.0 Build 0.0.31
