Lab 2.5: Troubleshooting Security (single attack)

Note

Estimated time to complete: 5 minutes

Lab environment access

If you have not yet visited the page Getting Started, please do so.

Tasks

  1. Connect on the Ubuntu Lamp Server server and launch the following command:

# /home/f5/f5-demo-app-troubleshooting/iloveyou.sh

  1. Login as paula on the BIG-IQ and select site36.example.com under application IT_apps.
  2. Open application sit36.example.com and display the All Transactions under the Security Analytics.

Expand the right-edge of the analytics pane to get the Client IPs, Countries, Attack Type and Violations filters.

../../_images/img_module2_lab5_1.png
  1. Login as larry, look for more details on the violation under Monitoring > EVENTS > Web Application Security > Event Logs > Events
../../_images/img_module2_lab5_2.png