Class 11: BIG-IQ DDoS Monitoring and Dashboard¶
In this class, we will review new DDoS Dashboard view, protection summary, and DDoS Event logging and correlation.
For simplicity, UDP attack traffic will be generated against both DNS virtual servers and device wide DoS: additional attacks can be done using the client nodes at the discretion of the student.
ESXi is not required for this class and can be shutdown.
At a minimum, this class only requires the two BOS BIG-IPs, the SJC BIG-IP, BIG-IQ CM and DCD, and the LAMP server.
The DNS Virtual Server 10.1.10.203 is already created and will be used as an attacked destination in these labs:
List of Virtual Servers and Applications Servers where various type of traffic is being send to (check
crontab config for more details).
|Virtual IP addresses where the traffic generator sends HTTP clean traffic||
|Virtual IP addresses where the traffic generator sends HTTP bad traffic||
|Virtual IP address(es) where the traffic generator sends access traffic (class 9)||
|Virtual IP addresses (listeners) where the traffic generator sends DNS traffic (class 10)||
|Virtual IP address(es) where the traffic generator sends DDOS attack (class 11)||
|Servers Applications (running in docker containers)||
10.1.10.142 have a corresponding FQDN named from