f5devcentral
diff --git a/‎docs/class1/module2/lab2.rst
Lines changed: 84 additions & 8 deletions b/‎docs/class1/module2/lab2.rst
Lines changed: 84 additions & 8 deletions
diff --git a/‎docs/class1/module2/lab3.rst
Lines changed: 76 additions & 28 deletions b/‎docs/class1/module2/lab3.rst
Lines changed: 76 additions & 28 deletions
diff --git a/‎docs/class1/module3/images/device_ssl_dashboard.png
503 KB b/‎docs/class1/module3/images/device_ssl_dashboard.png
503 KB
diff --git a/‎docs/class1/module3/lab1.rst
Lines changed: 12 additions & 14 deletions b/‎docs/class1/module3/lab1.rst
Lines changed: 12 additions & 14 deletions
@@ -149,6 +149,7 @@ F5 Application Study Tool Installation and Setup
           # The data_types that should be enabled or disabled. Default-disabled module users can enable those modules
           # by setting the below to true. These will apply to all devices and may be better specified on the
           # per-reciever settings file.
+          # The full list of available data types is [here](https://f5devcentral.github.io/application-study-tool/components/otel_collector/receiver_readme.html#available-data_types).
           data_types:
             f5.apm:
               enabled: false
@@ -162,6 +163,18 @@ F5 Application Study Tool Installation and Setup
               enabled: false
             f5.gtm:
               enabled: false
+            f5.policy.api_protection:
+              enabled: false
+            f5.policy.asm:
+              enabled: false
+            f5.policy.firewall:
+              enabled: false
+            f5.policy.ip_intelligence:
+              enabled: false
+            f5.policy.nat:
+              enabled: false
+            f5.profile.dos:
+              enabled: false
           # The TLS settings to use. Either a CA file must be specified or insecure_skip_verify
           # set to true (not recommended)
           tls:
@@ -223,12 +236,21 @@ F5 Application Study Tool Installation and Setup
         # Each entry must have a unique name, starting with bigip/
         # (e.g. bigip/1, bigip/2)
         bigip/1:
+          # Endpoint must be specified for each device
+          # Set this to the management IP for the device. This must be
+          # reachable from the Application Study Tool host (port 443).
           endpoint: https://10.1.1.5
+          ## Uncommenting any of the following lines will override the defaults in
+          ## ast_defaults.yaml bigip_receiver_defaults section.
+          # username: SOME_OVERRIDE_ACCOUNT_NAME
+          # password: "${SOME_OTHER_ENV_VAR_WITH_ANOTHER_PASSWORD}"
+          # collection_interval: 30s
+          # timeout: 20s
           data_types:
             f5.apm:
-              enabled: false
+              enabled: true
             f5.cgnat:
-              enabled: false
+              enabled: true
             f5.dns:
               enabled: true
             f5.dos:
@@ -237,36 +259,90 @@ F5 Application Study Tool Installation and Setup
               enabled: true
             f5.gtm:
               enabled: true
+            f5.policy.api_protection:
+              enabled: false
+            f5.policy.asm:
+              enabled: false
+            f5.policy.firewall:
+              enabled: false
+            f5.policy.ip_intelligence:
+              enabled: false
+            f5.policy.nat:
+              enabled: false
+            f5.profile.dos:
+              enabled: false
+          tls:
+            insecure_skip_verify: true
+            # ca_file:
         bigip/2:
+          # Endpoint must be specified for each device
+          # Set this to the management IP for the device. This must be
+          # reachable from the Application Study Tool host (port 443).
           endpoint: https://10.1.1.6
+          ## Uncommenting any of the following lines will override the defaults in
+          ## ast_defaults.yaml bigip_receiver_defaults section.
+          # username: SOME_OVERRIDE_ACCOUNT_NAME
+          # password: "${SOME_OTHER_ENV_VAR_WITH_ANOTHER_PASSWORD}"
+          # collection_interval: 30s
+          # timeout: 20s
           data_types:
             f5.apm:
               enabled: false
             f5.cgnat:
               enabled: false
             f5.dns:
-              enabled: false
+              enabled: true
             f5.dos:
               enabled: false
             f5.firewall:
               enabled: true
             f5.gtm:
+              enabled: true
+            f5.policy.api_protection:
+              enabled: false
+            f5.policy.asm:
+              enabled: false
+            f5.policy.firewall:
               enabled: false
+            f5.policy.ip_intelligence:
+              enabled: false
+            f5.policy.nat:
+              enabled: false
+            f5.profile.dos:
+              enabled: false
+          tls:
+            insecure_skip_verify: true
+            # ca_file:
         bigip/3:
           endpoint: https://10.1.1.7
           data_types:
             f5.apm:
-              enabled: false
+              enabled: true
             f5.cgnat:
-              enabled: false
+              enabled: true
             f5.dns:
-              enabled: false
+              enabled: true
             f5.dos:
-              enabled: false
+              enabled: true
             f5.firewall:
-              enabled: false
+              enabled: true
             f5.gtm:
+              enabled: true
+            f5.policy.api_protection:
+              enabled: false
+            f5.policy.asm:
+              enabled: false
+            f5.policy.firewall:
               enabled: false
+            f5.policy.ip_intelligence:
+              enabled: false
+            f5.policy.nat:
+              enabled: false
+            f5.profile.dos:
+              enabled: false
+          tls:
+            insecure_skip_verify: true
+            # ca_file:
 
     To save your changes, press ``escape``, then type ``:wq`` and ``return``. You should see a message similar to the following upon successful save:
 
 
@@ -104,26 +104,50 @@ F5 AST Configuration Setting Files
 
     .. code-block:: console
 
-        # Your bigip targets
-        # Values not explicitly configured here inherit values in
-        # the ast_defaults.yaml bigip_receiver_defaults section.
-        # Each entry must have a unique name, starting with bigip/
-        # (e.g. bigip/1, bigip/2)
-        bigip/1:
-          endpoint: https://10.1.1.5
-          data_types:
-            f5.apm:
-              enabled: false
-            f5.cgnat:
-              enabled: false
-            f5.dns:
-              enabled: true
-            f5.dos:
-              enabled: true
-            f5.firewall:
-              enabled: true
-            f5.gtm:
-              enabled: true
+      # Your bigip targets
+      # Values not explicitly configured here inherit values in
+      # the ast_defaults.yaml bigip_receiver_defaults section.
+      # Each entry must have a unique name, starting with bigip/
+      # (e.g. bigip/1, bigip/2)
+      bigip/1:
+        # Endpoint must be specified for each device
+        # Set this to the management IP for the device. This must be
+        # reachable from the Application Study Tool host (port 443).
+        endpoint: https://10.1.1.5
+        ## Uncommenting any of the following lines will override the defaults in
+        ## ast_defaults.yaml bigip_receiver_defaults section.
+        # username: SOME_OVERRIDE_ACCOUNT_NAME
+        # password: "${SOME_OTHER_ENV_VAR_WITH_ANOTHER_PASSWORD}"
+        # collection_interval: 30s
+        # timeout: 20s
+        data_types:
+          f5.apm:
+            enabled: true
+          f5.cgnat:
+            enabled: true
+          f5.dns:
+            enabled: true
+          f5.dos:
+            enabled: true
+          f5.firewall:
+            enabled: true
+          f5.gtm:
+            enabled: true
+          f5.policy.api_protection:
+            enabled: false
+          f5.policy.asm:
+            enabled: false
+          f5.policy.firewall:
+            enabled: false
+          f5.policy.ip_intelligence:
+            enabled: false
+          f5.policy.nat:
+            enabled: false
+          f5.profile.dos:
+            enabled: false
+        tls:
+          insecure_skip_verify: true
+          # ca_file:
 
     Notice how the configuration for this BIG-IP consists of the *endpoint* (management) IP address and the *data_types* (modules) enabled/disabled for collection. Its authentication settings are inherited from the ``ast_defaults.yaml`` file.
 
@@ -151,10 +175,36 @@ F5 AST Configuration Setting Files
 
     .. code-block:: console
 
-        bigip/3:
-          endpoint: https://10.1.1.7
-          tls:
-            insecure_skip_verify: true
+      bigip/3:
+        endpoint: https://10.1.1.7
+        data_types:
+          f5.apm:
+            enabled: true
+          f5.cgnat:
+            enabled: true
+          f5.dns:
+            enabled: true
+          f5.dos:
+            enabled: true
+          f5.firewall:
+            enabled: true
+          f5.gtm:
+            enabled: true
+          f5.policy.api_protection:
+            enabled: false
+          f5.policy.asm:
+            enabled: false
+          f5.policy.firewall:
+            enabled: false
+          f5.policy.ip_intelligence:
+            enabled: false
+          f5.policy.nat:
+            enabled: false
+          f5.profile.dos:
+            enabled: false
+        tls:
+          insecure_skip_verify: true
+          # ca_file:
 
     To save your changes, press ``escape``, then type ``:wq`` and ``return``. You should see a message similar to the following upon successful save:
 
@@ -186,8 +236,6 @@ Once the ``bigip_receivers.yaml`` file has been updated, you must run the config
 
         sudo docker-compose restart otel-collector
 
-
-
 Updating F5 AST
 ---------------
 
@@ -206,7 +254,7 @@ Let's check the AST OTel collector version by examining the ``docker-compose.yam
         otel-collector:
           image: ghcr.io/f5devcentral/application-study-tool/otel_custom_collector:v0.8.1
 
-   This particular output reveals ``v0.8.1`` of the OTel Custom Collector. If that version is lower than what's listed on the `f5devcentral / application-study-tool Releases board <https://github.com/f5devcentral/application-study-tool/releases/>`_, perform the following steps. Otherwise, you're ready and free to roll on to :ref:`Accessing F5 AST`.
+   This particular output reveals ``v0.9.1`` of the OTel Custom Collector. If that version is lower than what's listed on the `f5devcentral / application-study-tool Releases board <https://github.com/f5devcentral/application-study-tool/releases/>`_, perform the following steps. Otherwise, you're ready and free to roll on to :ref:`Accessing F5 AST`.
 
 #. Since local changes have been made to files which are actively tracked for changes in the repo, such as ``.env.device-secrets`` and ``config/bigip_receivers.yaml``, we must stash away those changes prior to performing a ``git pull``. Stashing simply sets them aside temporarily. We'll reincorporate them after pulling the latest code from GitHub.
 
@@ -230,7 +278,7 @@ Let's check the AST OTel collector version by examining the ``docker-compose.yam
 
     .. code-block:: console
 
-       sudo git checkout tags/v0.8.1
+       sudo git checkout tags/v0.9.1
 
 #. Undo the ``git stash`` action, bringing our local changes back where they need to be:
 
 
@@ -35,12 +35,13 @@ The **Fleet Inventory** dashboard is your one-stop shop for a list of all the F5
 
 Available Metrics include:
 
-* Total Inventory by Software Version
-* Inventory Total by Device Type
+* Inventory Total by Software Version
+* Inventory Total by Product Name
+* Inventory Total by Product Type
 * Online Inventory by Version
+* Module Status
 * Inventory Detail
 
-
 .. image:: images/fleet_inventory_dashboard.png
     :width: 800
 
@@ -71,8 +72,7 @@ Available Metrics include:
 
   * Current Client Side Connections
 
-  * Client Side Total Bytes In/Out
-
+  * Client Side Data Rate In/Out
 
 .. image:: images/device_utilization_dashboard.png
     :width: 800
@@ -86,13 +86,12 @@ From here, you can also see *if changes have occurred within the past 24 hours*
 
 Available Metrics include:
 
-* Virtual Server Availability
+* Virtual Server Availability (24h)
 * Is Virtual Server Available?
 * Virtual Server Connection Rate
 * Virtual Server Data Rate
 * Fleet Virtual Server Details
 
-
 .. image:: images/fleet_virtual_servers_dashboard.png
     :width: 800
 
@@ -103,18 +102,17 @@ The **SSL Certificate Status** dashboard is both self-explanatory and extraordin
 
 Available Metrics include:
 
-- Summary
-
-  - Certificate Type
+* Summary
 
-  - Certs Expiring in less than 30 days
+  * Certificate Type
 
-  - Certs Expiring in less than 90 days
+  * Certs Expiring in less than 30 days
 
-  - Certs Expiring in less than 180 days
+  * Certs Expiring in less than 90 days
 
-- Certificate Detail List
+  * Certs Expiring in less than 180 days
 
+* Certificate Detail List
 
 .. image:: images/ssl_certificate_status_dashboard.png
     :width: 800