You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: docs/class1/module3/lab1.rst
+83
Original file line number
Diff line number
Diff line change
@@ -9,6 +9,10 @@ In this lab, we'll explore the Application Study Tool's BIG-IP Fleet dashboards:
9
9
* Device Utilization
10
10
* Virtual Servers
11
11
* SSL Certificate Status
12
+
* Firewall
13
+
* APM Sessions
14
+
* DoS
15
+
* CGNAT
12
16
13
17
.. note:: There is an `exhaustive list of metrics <https://github.com/f5devcentral/application-study-tool/blob/main/pages/components/otel_collector/receiver_metrics.md>`_ collected, some of which have been exposed through the pre-built dashboards you are about to explore.
The **Firewall** dashboard is simple, straightforward, and eye-opening for organizations leaning on F5 BIG-IP to provide protection at layers three and four. Visit this dashboard to quickly obtain a view of firewall rule hits and assess trends. Although network and application attacks are becoming increasingly sophisticated, bad actors will almost certainly never stop attempting to exploit layer three/four vulnerabilities.
126
+
127
+
.. note:: One of the first things you'll notice about this dashboard is the presence of configuration instructions. Please take note of these and be sure your ``ast_defaults.yaml`` and ``bigip_receivers.yaml`` files are properly configured. Otherwise, stats will not be collected and displayed.
128
+
129
+
Available Metrics include:
130
+
131
+
* Firewall Rule Hit Rate by Action & Type
132
+
* Firewall Rule Hits (Last 1h)
133
+
134
+
.. image:: images/firewall_dashboard.png
135
+
:width:800
136
+
137
+
APM Sessions
138
+
------------
139
+
140
+
The **APM Sessions** dashboard will be an area of focus for teams using their F5 BIG-IPs to wrap access policies and identity access management around applications. Understanding session usage and state enables administrators to analyze access policy trends and ensure proper sizing for concurrent connectivity units (CCUs). This aids in preventing hitting a CCU ceiling, which can result in rejected user connections and poor digital experiences.
141
+
142
+
.. note:: One of the first things you'll notice about this dashboard is the presence of configuration instructions. Please take note of these and be sure your ``ast_defaults.yaml`` and ``bigip_receivers.yaml`` files are properly configured. Otherwise, stats will not be collected and displayed.
143
+
144
+
Available Metrics include:
145
+
146
+
* Current APM Sessions
147
+
* APM Session Usage
148
+
* Current APM Access Sessions by State
149
+
* APM Access Sessions Usage
150
+
151
+
.. image:: images/apm_sessions_dashboard.png
152
+
:width:800
153
+
154
+
DoS
155
+
---
156
+
157
+
The **DoS** dashboard brings *Denial of Service* metrics to the forefront. This is a major area of focus especially for teams with F5 BIG-IPs deployed at or near the edge. There is great value in understanding the status of DoS mitigation efforts, and this dashboard helps deliver key stats.
158
+
159
+
.. note:: One of the first things you'll notice about this dashboard is the presence of configuration instructions. Please take note of these and be sure your ``ast_defaults.yaml`` and ``bigip_receivers.yaml`` files are properly configured. Otherwise, stats will not be collected and displayed.
160
+
161
+
Available Metrics include:
162
+
163
+
* DoS Profile Info
164
+
* DoS Stats Rate
165
+
* DoS Attacks Rate
166
+
* DoS Drops Rate
167
+
* DoS Stats by Vector
168
+
* DoS Attacks by Vector
169
+
* DoS Drops by Vector
170
+
* DoS BA Stats Rate
171
+
* DoS BA Detected Rate
172
+
* DoS BA Drops Rate
173
+
* DoS BD Stats Rate
174
+
* DoS BD Detected Rate
175
+
* DoS BD Drops Rate
176
+
* DoS Bytes Rate
177
+
* DoS Byte Drop Rate
178
+
179
+
.. image:: images/dos_dashboard.png
180
+
:width:800
181
+
182
+
CGNAT
183
+
-----
184
+
185
+
The **CGNAT** dashboard is geared toward delivery of *Carrier-Grade Network Address Translation* stats to folks in the service provider realm. Service providers run tight ships with serious SLAs and need the best possible performance for their customers, which is aided by the granular level of visibility found here.
186
+
187
+
.. note:: One of the first things you'll notice about this dashboard is the presence of configuration instructions. Please take note of these and be sure your ``ast_defaults.yaml`` and ``bigip_receivers.yaml`` files are properly configured. Otherwise, stats will not be collected and displayed.
188
+
189
+
Available Metrics include:
190
+
191
+
* LSN Pool Settings
192
+
* Pool Translations (Current)
193
+
* PBA Active Port Blocks
194
+
* Pool Translation Request Rate
195
+
* PBA Port Block Allocation Rate
196
+
* Port Translation Request Failure Rate
197
+
* PBA Port Block Allocation Failure Rate
198
+
199
+
.. image:: images/cgnat_dashboard.png
200
+
:width:800
118
201
119
202
Please select **Next** below and continue on to :ref:`BIG-IP - Device`.
0 commit comments