F5 Logo MyF5
Search
  1. MyF5 Home
  2. End-of-Life Products
  3. BIG-IP 1.x - 4.x
  4. BIG-IP Controller Administrator Guide, version 3.1
Manual : BIG-IP Controller Administrator Guide, version 3.1

Applies To:

Show Versions Show Versions

BIG-IP versions 1.x - 4.x

  • 3.1.1 PTF-01, 3.1.1, 3.1.0
Manual
Original Publication Date: 09/27/2007


Introduction to the BIG/ip Controller Administrator Guide

Welcome to the BIG/ip Controller Administrator Guide

BIG/ip Controller specifications

Internet protocol and network management support
Security features
Configuration scalability
Configuration and monitoring tools
Load balancing options
IP packet filtering, rate classes, and rate filters
Configurable persistence for e-commerce and dynamic content sites
BIG/ip Controller platform options

Finding help and technical support resources

What's new in version 3.1

SSL Accelerator
Pool Persistence
Enhancements to configuration and monitoring tools

Working with Special Features

Introducing special features

Using specialized load balancing modes

Understanding individual load balancing modes
Setting the global load balancing mode

Controlling network access and traffic flow with filters

IP filters
Rate filters and rate classes

Working with more than two interface cards

Configuring additional interfaces with the First-Time Boot utility
Specifying an interface for a virtual address
Specifying an interface for a NAT address
Specifying an interface for a SNAT address
Routing with multiple NICs

Optimizing large configurations

Reducing ARP traffic on the external network
Reducing the number of node pings and service checks issued by the BIG/ip Controller

Using the versatile interface configuration options

Destination route and translation processing
Source translation processing
Interface security

Using advanced virtual server options

Using per-connection routing
Configuring forwarding virtual servers
Configuring transparent virtual servers
Using virtual server port translation
Resetting connections on service down

Working with Intelligent Traffic Control

Introducing Intelligent Traffic Control (ITC)

More flexible load balancing using pools and members

Load balancing members
Defining pools

Selecting a load balancing pool using a rule

Pool selection based on HTTP request data
Pool selection based on client IP address
Statements
Questions (expressions)
HTTP request string variables

Configuring rules

Configuring virtual servers that reference rules

Additional rule examples

Comparing load balancing configurations

Configuring an SSL Accelerator

Introducing the SSL Accelerator

Hardware acceleration options

Configuring the SSL Accelerator

Generating a key and obtaining a certificate
Installing certificates from the certification authority (CA)
Create an HTTP virtual server
Create an SSL gateway
Enabling, disabling, or deleting an SSL gateway
Displaying the configuration for an SSL gateway from the command line

Optional SSL Accelerator configuration

Create a last hop pool that includes additional network devices
Modify the SSL gateway so that it references the last hop pool

Working with Advanced Service Check Options

Introducing advanced service check options

Setting up ECV service checks for transparent nodes

Configuring ECV for transparent nodes
Setting up ECV through transparent nodes with the F5 Configuration utility

Introducing EAV service checks

Setting up custom EAV service checks

Verifying external service checker requirements
Installing the external service checker on the BIG/ip Controller
Allowing EAV service checks
Command line arguments for EAV service checks

Using the EAV pingers bundled with the BIG/ip Controller

EAV service check for FTP
EAV service check for POP3
EAV service check for SMTP
EAV service check for NNTP
EAV service check for SQL-based services
Troubleshooting SQL-based service checks
Creating a test account for Microsoft SQL Server

Working with Advanced Persistence Options

Introducing advanced persistence options

Using HTTP cookie persistence

Insert mode
Rewrite mode
Passive mode
Hash mode

Using destination address affinity (sticky persistence)

Using a simple timeout and a persist mask on a pool

Maintaining persistence across virtual servers that use the same virtual addresses

Maintaining persistence across all virtual servers

Backward compatible persistence for node list virtual servers

Working with Advanced Redundant System Features

Introducing advanced redundant system options

Mirroring connection and persistence information

Commands for mirroring
Mirroring virtual server state
Mirroring SNAT connections

Using gateway fail-safe

Adding a gateway fail-safe check
Enabling gateway fail-safe
Gateway fail-safe messages

Using network-based fail-over

Setting a specific BIG/ip Controller to be the preferred active unit

Setting up active-active redundant controllers

Configuring an active-active system
Active-active system fail-over
Additional active-active BIG/db configuration parameters
New active-active bigpipe commands
Running mixed versions of BIG/ip Controller software in active-active mode
Returning an active-active installation to active/standby mode

Using Advanced Network Configurations

Introducing advanced network configurations

nPath routing

Defining a virtual server with address translation disabled
Setting the route through the BIG/ip Controller
Setting the idle connection time-out

Per-connection routing

ISP load balancing

Configuring interfaces for the additional internet connection
Configuring virtual servers for an additional internet connection

Firewall load balancing

Configuring interfaces for the firewall sandwich
Configuring virtual servers for a firewall sandwich

VPN load balancing

Configuring interfaces for VPN load balancing
Configuring virtual servers for VPN load balancing

VPN and router load balancing

Configuring interfaces for VPN load balancing
Configuring virtual servers for VPN and router load balancing

SNAT and virtual servers combined

One IP network topology with one interface

One IP network topology with two interfaces

Setting up 802.1q VLAN trunk mode

Adding VLAN tag definitions to /etc/netstart
Adding VLAN tag definitions to BIG/db
Configuring multiple VLANs on one interface
To enable or disable VLAN tags on the command line
Using ifconfig to add another VLAN
Using netstat to view VLAN tags
Disabling and enabling VLAN tags using the F5 Configuration utility

Monitoring and Administration

Monitoring and administration utilities provided on the BIG/ip Controller

Using the BIG/pipe command utility as a monitoring tool

Monitoring the BIG/ip Controller
Monitoring virtual servers, virtual addresses, and services
Monitoring nodes and node addresses
Monitoring NATs
Monitoring SNATs

Working with the BIG/stat utility

Working with the BIG/top utility

Working with the Syslog utility

Removing and returning items to service

Removing the BIG/ip Controller from service
Removing individual virtual servers, virtual addresses, and ports from service
Removing individual nodes and node addresses from service
Viewing the currently defined virtual servers and nodes

Viewing system statistics and log files

Viewing system statistics
Viewing log files

Printing the connection table

Changing passwords for the BIG/ip Controller

Changing the BIG/ip Controller password
Changing passwords and adding new user IDs for the BIG/ip web server

Working with the BIG/db database

Using bigdba

Configuring SNMP

Working with SNMP on the BIG/ip Controller

Configuring SNMP on the BIG/ip Controller

Downloading the MIBs
Understanding configuration file requirements
Configuring options for the checktrap script

Glossary



Contact Support Contact Support

Have a Question?

Support and Sales >

About F5

Education

F5 Sites

Support Tasks




©2023 F5 Networks, Inc. All rights reserved.


Trademarks Policies Privacy California Privacy Do Not Sell My Personal Information