F5 SP PEM Training - Index

Welcome

Welcome to F5’s Service Provider PEM Training

Getting Started

Please follow the instructions provided by this documentation to start your lab and access your lab.

Prerequisites

In order to complete this series of training classes you will need to utilize the provided blueprint for the course session.

All pre-built environments implement the lab-topology shown below.

There will be three methods to utilise: - Local Laptop (Docker + VM) - Preferred

  • Ravello Pre-Built Labs
  • UDF Pre-Built Labs

Local Laptop

Please follow the instructions provided by your lab instructor to build the lab.

Note

Need to build this

UDF Blueprint

Please follow the instructions provided by your lab instructor to access your lab environment. The lab environment will be delivered via UDF blueprints to each student.

Note

Please deploy and start your lab as soon as you have access to the class as the lab takes some time to boot all the components.

Lab Topology

The network topology below (need to add details) The following components have been included in your lab environment:

  • 1 x F5 BIG-IP VE (v13.0 HF2)
  • 1 x Docker Container Ship

Include UDF / Ravello Lab stuff here as well

lab_topo1

The following table lists VLANS, IP Addresses and Credentials for all components:

Lab Network Information
Component VLAN IP Address Credentials
Linux Jumphost Mgmt 10.1.1.20  
BIG-IP Mgmt 10.1.1.4 admin/admin
  Internal 10.1.10.5  
  External 10.1.20.5  
  Control 10.1.30.5  
Client 00 Mgmt 10.1.1.9 udfclient/S3rv1ceP0weR
  Internal 10.1.10.25  
Client 01 Mgmt 10.1.1.7 udfclient/S3rv1ceP0weR
  Internal 10.1.10.30  
ELK Stack Mgmt 10.1.1.5 ubuntu/default
  Control 10.1.30.15  

Class 1: Overview of Policy Enforcement Manager

This class covers the following topics:

The first module will be instructor led.

  • Module 1
    • PCEF / TDF
    • Use cases for PEM - Mobile / Fixed / University
    • Successful Deployments
  • Module 2
    • What is PEM
    • Supported Platforms
    • Sizing Considerations

Expected time to complete: ?? mins

Module 1: Overview SP Architectures

  • PCEF / TDF
  • Use cases for PEM - Mobile / Fixed / University
  • Successful Deployments

Note

PPT will be uploaded to hive after the event.

Module 2: What is PEM

  • What is PEM
    • Concepts
      • SP DAG
    • Structure
    • DB’s
    • Policy
  • Supported Platforms
  • Sizing Considerations

Note

PPT will be uploaded to hive after the event.

Class 2: Basic PEM

This class covers the following topics:

Module 1 - Initial PEM setup

  • Provision + AVR
  • Network setup
  • Data Plane Wizard - PEM Policy
  • Control Plane Wizard
  • Global PEM Policy
  • Unknown Subscriber Policy

Module 2 - Verify PEM setup

  • DB downloads
  • Log files to check

  • Pass PEM Traffic - Verify traffic paths - PEM traffic Stats

    • Data Plane
    • Control Plane

Expected time to complete: ?? hours

Module 1: Basic PEM Setup

Module 1 - Initial PEM setup

  • Provision + AVR
  • Network setup
  • Data Plane Wizard - PEM Policy
  • Control Plane Wizard
  • Global PEM Policy
  • Unknown Subscriber Policy

Lab 1.1: Install and Provision PEM

Lab 1.2: Network Setup

network setup and SP DAG

Lab 1.3: Data Plane Wizard

Lab 1.4: Control Plane Wizard

Lab 1.5: Initial PEM Policies

Module 2: Verify Basic PEM

Module 2 - Verify PEM setup

  • DB downloads
  • Log files to check

  • Pass PEM Traffic - Verify traffic paths - PEM traffic Stats

    • Data Plane
    • Control Plane

Lab 2.1 – Verify PEM Setup

Lab 2.2 – Pass PEM Traffic

Class 4: Subscriber Discovery

This class covers the following topics:

  • Subscriber Discovery
Module 1
  • RADIUS subscriber Discovery
Module 2
  • DHCP subscriber Discovery
Module 3
  • irules subscriber discovery

Expected time to complete: ?? hours

Module 1: RADIUS Subscriber Discovery

Module 1
  • RADIUS subscriber Discovery

Lab 1.1: RADIUS Subscriber Discover

Module 2: DHSCP Subscriber Discovery

Module 2 - DHCP Subscriber discovery

Lab 1.1: DHCP Subscriber Discovery

Module 3: irules and other subscriber discovery

Module 3 - irules and other subscriber discovery

Lab 1.1: Install and Provision PEM

Class 3: PEM Policy

This class covers the following topics:

Module 1 - Policy

  • PEM Policy
  • PEM Rules
  • PEM irules

Expected time to complete: ?? hours

Module 1: PEM Policy

Module 1 - Policy

  • PEM Policy
  • PEM Rules
  • PEM irules

Lab 1.1: Create Basic PEM Policy

basic multi rule Policy

Lab 1.2: Advanced PEM Policy

PEM policy with multiple rules and precedence

Lab 1.3: PEM iRULES

crete and use PEM irule in Policy

Class 5: Provisioning Subscribers

This class covers the following topics:

Module 1 - Static Subscribers

Module 2 - Dynamic Subscribers

Expected time to complete: ?? hours

Module 1: - Static subscriber provisioning

Module 1 - Static subscriber provisioning

Lab 1.1: - Static subscriber provisioning

Module 2: Dynamic subscriber provisioning

Module 2 - Dynamic subscriber provisioning

Lab 2.1 – Dynamic subscriber provisioning

Class 6: Traffic classification

This class covers the following topics:

Module 1 - Traffic Classificaiton

Module 2 - Custom Classificication

  • LTM profiles
  • irules

Module 3 - updating signature files

Expected time to complete: ?? hours

Module 1: Traffic Classification

Module 1 - Traffic Classifiction

Lab 1.1: Traffic Classification

Module 2: Custom Classificaitons

Module 2 - Custom Classificitons - ltm profiles - irules

Lab 2.1 – Custom Classificaitons

Module 3: Updating Traffic Classification

Module 3 - Updating signature files

Lab 2.1 – Updating Traffic Classificaiton

Class 7: BWC

This class covers the following topics:

Module 1 - Global BWC

Module 2 - Subscriber BWC - Application BWC

Expected time to complete: ?? hours

Module 1: Global BWC

Module 1 - GLobal BWC

Lab 1.1: Global BWC

Module 2: Subscriber BWC

Module 2 - Subscriber BWC - Application BWC

Lab 2.1 – Subsriber BWC

Class 8: Reporting

This class covers the following topics:

Module 1 - Reporting

  • session
  • flow
  • AVR

Module 2 - Reporting Externally - ELK

Expected time to complete: ?? hours

Module 1: Reporting

Module 1 - Reporting

  • session
  • flow
  • AVR

Lab 1.1: Reporting

Module 2: Advanced Externally

Module 2 - Reporting Externally - ELK

Lab 2.1 – Advanced Reporting

Class 9: Troubleshooting PEM

This class covers the following topics:

Module 1 - PEM Troubleshooting

Expected time to complete: ?? hours

Module 1: Troubleshooting PEM

Module 1 - tmsh commands - Stats - tmctl - check dag settings - check VS types - check PEM profiles

Lab 1.1: Troubleshooting PEM

HOWTOs: Index

This section contains useful HOWTOs

HOWTO - how to do stuff

Twill put extra stuff into here

Task 1 – PEM DB Keys

insert useful PEM DB keys stuff here (ignore pictures below / place holder)

howto1

Note

Notice the ? symbol next to the field.

Update by clicking on the refresh button

howto2

Note the increased change

howto3

Task 2 - tmctl classification stats

show class stats

  1. tmsh
  2. list classification

Task 2 - tmctl url stats

show url stats

  1. tmsh
  2. list url stats