Monday, April 8, 2013

F5 Application Delivery Fundamentals Exam Study and Resource Guide

Section 1 - OSI

The first section of the exam concentrates on some basic networking concepts, working up the OSI model from the bottom.  Most of this information is common knowledge in the networking industry, but I guarantee that you don't know all of it, especially when you get to the application layer protocols.  This is mostly a collection of Wikipedia articles, but with information this basic, Wiki is our friend.

This section is worth 33% of the total test score. 

  • Objective 1.01 - Explain, compare and contrast the OSI layers 
OSI Model Wiki
Another OSI Model Overview
  • Objective 1.02 - Explain protocols and technologies specific to the data-link layer 
ARP
ARP on F5
MAC Address
Broadcast Domain
VLANs
Link Aggregation Wiki
Big IP Link Aggregation
  • Objective 1.03 - Explain protocols and apply technologies specific to the network layer 
Routing on F5
TCP/IP Overview
IP Addressing & Subnetting
Routing Protocols
IP Packet Fragmentation
IP TTL (Time to Live)
  • Objective 1.04 - Explain the features and functionality of protocols and technologies specific to the transport layer 
MTU / MSS
TCP Functionality
TCP Connection Setup by Virtual Server Type
TCP Profile Settings (Tunables)
UDP Functionality
UDP Profile Settings (Tunables) 
TCPDUMP on F5
  • Objective 1.05 - Explain the features and functionality of protocols and technologies specific to the application layer
Application Layer Traffic Managment on F5
HTTP Functionality
HTTP Status Codes
HTTP Headers
F5 HTTP White Paper
DNS Functionality
DNS Record Types
SIP Functionality
F5 SIP White Paper
FTP Functionality
SMTP Functionality
HTTP Cookies
My Name is URL

Section 2 - F5 Solutions and Technology

In this section, we get into the actual F5 Solutions.  Most engineers taking this exam will be experienced with LTM and iRules, but little else.  Hopefully, the familiarity gained from the F5 datasheets and white papers shown below will help you to understand the breadth of the F5 offerings.  Prepare to take the first step into a larger world.

This section is also worth 33% of the total test score.
  • Objective 2.01 - Articulate the role of F5 products
Access Policy Manager (APM)
Application Security Manager (ASM)
Local Traffic Manager (LTM)
Global Traffic Manager (GTM)
Enterprise Manager (EM)
WAN Optimization Manager (WOM)
Web Accelerator
ARX File Virtualization
F5 White Papers
F5 Datasheets
  • Objective 2.02 - Explain the purpose, use and advantages of iRules  
iRule Wiki (Requires Devcentral Login)
  • Objective 2.03 - Explain the purpose, use and advantages of iApps
iApp Wiki (Requires Devcentral Login)
  • Objective 2.04 - Explain the purpose, use and advantages of iControl
iControl Wiki (Requires Devcentral Login)
  • Objective 2.05 - Explain the purpose of and use cases for full proxy and packet forwarding / packet based architectures
Full Proxy Architecture (Lori MacVittie rules!)
Packet-Based vs Full Proxy
SNAT
Auto Last Hop
Virtual Server Types
  • Objective 2.06 - Explain the advantages and configurations of high availability (HA)
F5 HA Basics 
Config Sync
Big IP HA Features
Mirroring
VLAN Failsafe


Section 3 - Load Balancing Essentials

This section is a short one compared to the previous two.  It's worth 17% of the total test score.  If you're going after an F5 certification, you're probably already familiar with much of this material, so you probably won't have to study as much for this section.  It never hurts to brush up on the algorithms and persistence methods. 
  • Objective 3.01 - Discuss the purpose of, use cases for, and key considerations related to load balancing
Load Balancing Wiki 
Load Balancing 101
Load Balancing Algorithms (Devcentral)
More on Load Balancing Algorithms
Another Load Balancing Algorithm Article
Yet Another Load Balancing Algorithm Article
Persistence
  • Objective 3.02 - Differentiate between a client and a server

Client / Server on Wiki - Yes, I'm surprised this is even a question.


Section 4 - Security

This section is weighted at 11% of the total test score, but it feels like it should be more.
  • Objective 4.01 - Compare and contrast positive and negative security models
Positive Security Model
Positive vs Negative Security
  • Objective 4.02 - Explain the purpose and cryptographic services

Cryptography
SSL Certificates (Devcentral)
Certificate Chains
Public-Key Cryptography
Symmetric vs Asymmetric Encryption
Client SSL Profiles
Server SSL Profiles 
SSLDUMP Utility
  • Objective 4.03 - Describe the purpose and advantages of authentication
F5 Authentication 101  
AAA
Single Sign On
Multi-factor Authentication
  • Objective 4.04 - Describe the purpose, advantages and use cases of IPsec and SSL VPN
SSL VPN
IPsec VPN
IPSEC vs SSL VPN

Section 5 - Application Delivery Platforms
  
The final section is worth only 7% of the total test score.  The finish line is in sight!
  • Objective 5.01 - Describe the purpose, advantages, use cases, and challenges associated with hardware-based application delivery platforms and virtual machines
Virtualization
Virtualization Platforms
  • Objective 5.02 - Describe the purpose of the various types of advanced acceleration techniques.

Application Performance Optimization
TCP Optimization
Oneconnect
Caching
Compression
Pipelining
Acceleration 101
Acceleration 102

--------------------------------------------------------------------------------------------------------------------------------

F5 Fundamentals Certification Resource Guide

Purpose of this document


This document outlines topic areas covered on the F5 Fundamentals Certification Exam and resources available to help prepare test takers.

OSI model

Networking basics


·         http://www.windowsnetworking.com/articles_tutorials/Networking-Basics-Part1.html
·         http://ocw.mit.edu/courses/electrical-engineering-and-computer-science/

Data link layer

Networking concepts, switching, addressing, media access control

·         http://www.osischool.com/protocol/arp/basic
·         http://support.f5.com/kb/en-us/products/big-ip_ltm/manuals/product/ltm_implementations_guide_10_1/sol_linkagg.html
·         Book:The TCP/IP Guide, Kozierokhttp://www.tcpipguide.com/
·         http://support.f5.com/kb/en-us/products/big-ip_ltm/manuals/product/tmos-ip-routing-administration-11-2-0/5.html
·         http://support.f5.com/kb/en-us/products/big-ip_ltm/manuals/product/tmos_management_guide_10_1/tmos_arp.html
·         https://support.f5.com/kb/en-us/solutions/public/3000/500/sol3523.html
·         https://support.f5.com/kb/en-us/solutions/public/3000/500/sol3523.html



Network layer

IP and host addressing, routing, packet traversing

·         Book:The TCP/IP Guide, Kozierok  http://www.tcpipguide.com/
·         http://www.tenouk.com/download/pdf/Module42.pdf
·         http://www.redbooks.ibm.com/redbooks/pdfs/gg243376.pdf
·         https://support.f5.com/kb/en-us/products/big-ip_ltm/manuals/product/tmos-ip-routing-administration-11-2-0.html
·         https://support.f5.com/kb/en-us/solutions/public/13000/200/sol13284.html
           

Transport layer

TCP, UDP concepts

·         Book:The TCP/IP Guide, Kozierok  http://www.tcpipguide.com/
·         http://www.osischool.com/protocol/tcp/three-way-handshake
·         http://support.f5.com/kb/en-us/solutions/public/8000/000/sol8082.html
·         http://support.f5.com/kb/en-us/solutions/public/7000/500/sol7559.html
·         http://support.f5.com/kb/en-us/solutions/public/7000/500/sol7535.html
·         http://support.f5.com/kb/en-us/solutions/public/1000/800/sol1893.html

Application layer

HTTP concepts, SIP, SMTP, DNS

·         Book:The TCP/IP Guide, Kozierok  http://www.tcpipguide.com/
·         http://support.f5.com/kb/en-us/products/big-ip_ltm/manuals/product/ltm_configuration_guide_10_1/ltm_services_profiles.html?sr=20797034#1226979
·         http://www.f5.com/pdf/white-papers/sip-defined-wp.pdf
·         http://www.f5.com/pdf/white-papers/http-fundamentals-wp.pdf
·         Book:DNS and Bind, Liu http://www.amazon.com/DNS-BIND-Cricket-Liu/dp/1565925122
·         RFC 2616 (HTTP): http://www.ietf.org/rfc/rfc2616.txt



Positive and Negative Security

Concepts and examples

·         https://devcentral.f5.com/Tutorials/TechTips/tabid/63/articleType/ArticleView/articleId/1088520/F5-Security-on-Owasp-Top-10.aspx
·         https://devcentral.f5.com/Community/GroupDetails/tabid/1082223/asg/39/aff/47/showtab/groupforums/Default.aspx

 

Cryptographic services

·         http://www.f5.com/pdf/white-papers/authentication-101-tb.pdf

 

IPSec and SSL

SSL Concepts, termination, client SSL, acceleration

·         Book:SSL and TLS, Eric Rescorla, http://www.amazon.com/SSL-TLS-Designing-Building-Systems/dp/0201615983
·         LTM Essentials, Module 7 on F5 University
·         http://eprint.iacr.org/2004/314.pdf
·         https://support.f5.com/kb/en-us/solutions/public/10000/100/sol10167.html
·         https://support.f5.com/kb/en-us/solutions/public/11000/200/sol11220.htm
·         https://support.f5.com/kb/en-us/solutions/public/10000/200/sol10209.html

F5 Solutions & Technology

Whitepapers and data sheets

·         http://www.f5.com/solutions/resources/white-papers.html
·         http://www.f5.com/solutions/resources/datasheets/

iRules

Best practices, examples, wiki groups


·         https://devcentral.f5.com/wiki/iRules.HomePage.ashx

iApps

Best practices, examples, wiki groups


·         https://devcentral.f5.com/wiki/iApp.HomePage.ashx

iControl

Best practices, examples, wiki groups

·         https://devcentral.f5.com/default.aspx?tabid=76
·         https://devcentral.f5.com/wiki/iControl.HomePage.ashx

 

Proxy & Packet based Architectures

LTM architecture

·         LTM Essentials, Modules 1 and 2 on F5 University
·         http://www.f5.com/pdf/products/big-ip-local-traffic-manager-overview.pdf
·         https://support.f5.com/kb/en-us/solutions/public/7000/800/sol7820.html
·         https://support.f5.com/kb/en-us/solutions/public/7000/700/sol7751.html
·         https://support.f5.com/kb/en-us/solutions/public/11000/700/sol11796.html
·         https://support.f5.com/kb/en-us/solutions/public/7000/700/sol7752.html
·         https://support.f5.com/kb/en-us/solutions/public/12000/200/sol12272.html
·         https://support.f5.com/kb/en-us/solutions/public/13000/400/sol13444.html

 

High Availability

Redundant pair concepts, setup, and synchronization


·         LTM Essentials, Module 10 on F5 University
·         https://support.f5.com/kb/en-us/solutions/public/7000/000/sol7024.html
·         https://support.f5.com/kb/en-us/solutions/public/11000/700/sol11736.html
·         https://support.f5.com/kb/en-us/solutions/public/7000/200/sol7222.html
·         https://support.f5.com/kb/en-us/solutions/public/13000/200/sol13297.html

Load Balancing

Load balancing methods, configuration

·         LTM Essentials, Module 3 on F5 University
·         http://www.f5.com/pdf/white-papers/load-balancing101-wp.pdf
·         https://support.f5.com/kb/en-us/solutions/public/6000/400/sol6406.html
·         https://support.f5.com/kb/en-us/solutions/public/9000/100/sol9125.html
·         https://support.f5.com/kb/en-us/solutions/public/12000/100/sol12105.html

 

Client Server roles and protocol

·         http://ocw.mit.edu/courses/sloan-school-of-management/15-564-information-technology
·         http://www.protocols.com/

 

Web Application Delivery Platforms (VM and HW Based)

Hypervisors, supported platforms, virtualization

·         http://www.f5.com/solutions/virtualization/
·         http://www.vmguru.nl/wordpress/wp-content/uploads/2010/08/Hypervisor-comparison.pdf

Acceleration techniques


·         https://devcentral.f5.com/weblogs/macvittie/category/4335.aspx
·         http://www.f5.com/solutions/acceleration/
·         http://www.f5.com/pdf/white-papers/acceleration-101-wp.pdf
·         http://www.f5.com/pdf/white-papers/acceleration-102-wp.pdft.

No comments:

Entertainment