-
[T&C] Harmony Controller: Send alerts to Microsoft Teams (Webhook URL)
In this article, we will look at configuring Harmony Controller to send alerts to a Microsoft Teams channel (webhook URL). Objective Here we have a Thunder device with the following virtual service: slb virtual-server DOH-VIP 100.64.1.250 port 53 dns-udp service-group SG-DNS template dns dns1 We want to monitor the status…
-
Health check did not work in GSLB
I have three ISP line,ISP1,ISP2 and ISP3. We check the ISP's health status with ICMP protocol,when ISP1 down,how to know the status?When ISP1 down,If the health check monitor go out through ISP2 or ISP3?So A10 can't know the ISP1 down.The health check monitor did not work.
-
Upgrade OS standard steps
What is the best practise steps for upgrade OS?😀
-
Radius LB DSR Mode
Hi Experts, Do you have a technical reference for load balancing Radius Server in DSR mode? The traffic flow will be something like this(see attached image). I am not really sure if this is the right behavior so I am asking if you can share some good references with regards to this deployment. Thank you.
-
[T&C] Automate Application Delivery Operation Tasks with A10 and HashiCorp NIA
This article describes how you can use Thunder ADC integrating with HashiCorp Network Infrastructure Automation (NIA) solution which focuses on Day-2 networking tasks automation that can reduce the burden on operators caused by manual ticketing systems. This solution consists of four components including HashiCorp…
-
Health Monitor and Expect Text
Good afternoon everyone, I am attempting to perform a health check on an application server that returns a long nested string. This is more than a 200 or even a Success! on a health monitor page but something more along the lines of the below.…
-
A10 Box #1
Is there anyone in the community that would be interested in acquiring the first box sold in North America. I have emails with A10 management that can prove this as I can also share the genealogy and information of how the sale went down, who was involved and other facts. The box was removed from service in working order…
-
[T&C] Firewall with Application Visibility using Thunder CFW
Thunder CFW offers Gi LAN services consolidation to combine L4–L7 functions, including CGNAT, stateful firewall, and application visibility to integrate greater efficiencies on the Gi LAN. In this article, we will look at how you can configure Thunder CFW for application-level visibility. First, make sure you have the…
-
Question for LB-method [Round Robin Strict]
Hi all, Does any one know how to work with Round Robin Strict method and when would it be useful to use this?
-
http response status stats
Hi, On ADC with ACOS 4.1.1 by default http response stats sampling works on real servers ports, but not on VIP. After upgrade to 4.1.4 situation was reversed - http response stats sampling works on VIPs, but not on real servers ports. Configuring on server port "sampling-enable all" (or specific field) do nothing. slb…
-
Terraform Provider
I've been messing around with Terraform and seeing what it can do. I've built just a basic config file to create a server with a few settings. All runs great. Then I start to "manually" change settings on the newly formed server in the ADC. I change the weight to '10' from the values of '1' that my config gave it. I re-run…
-
aFlex script to filter URL
Hi experts do you have aFlex script to filter the URL that the users are trying to reach to the internet. Basically, I have AC type class-list and URLs are configured on it. Once I have verified in aFlex that the URL which the user is trying to reach is on my class-list then I will redirect the traffic to a specific ISP.…
-
Migrate ADC
Hi everyone, I need your recommendation , what is the best way to migrate all my configuration of 1040 appliances to 3350. I tried use backup and restore, but some objects don't work properly and snmp trap don't Send nothing. Best regards
-
what is a Partition in A10 ??
Hi, I am new to A10, I would like to know if a Partition is a virtual routing concept (like VRF), or a virtual context, where data plane, control plane, and management plane are segregated thanks,
-
TPS deployment with VLANS
Hi everyone, I’m trying a new implementation for a TPS appliance The architecture is the following, there is going to be two internet connections directly to the TPS appliance then the TPS will make Vlan Tagging the traffic and send it to the Switch Core that will forward that traffic to the Firewall by the trunk…
-
WAF Deployment
Hi, Is there any deployment guide to install a basic WAF configuration ? Or some configuration exemple with some explanations. Regards
-
Monitor Application & Network using ACOS Prometheus Exporter
This article describes how to setup Prometheus and A10 Thunder running pre-ACOS 5.0 version (e.g., 3.2, 4.1.4 or 5.1) using a Prometheus Exporter to gain application network visibility and operational insights. Prometheus uses the HTTP PULL model to scrape such various data from network devices and store the received…
-
Application Network Visibility using the Prometheus and A10 Thunder
This article describes how to set up Thunder ADC and Prometheus to gain application network visibility and operational insights using a visualization tool like Grafana. A10 Thunder supports a logging system to monitor resources like system (CPU, Memory usage), interface statistics, as well as service metrics and…
-
DNS CAA record response
I am doing things like this: set rr1 [DNS::rr $name 0 IN TXT "some text here"] DNS::answer insert $rr1 Now I need to return a CAA record and can't find a way to format the entry to do this. A CAA record looks like this in a zone file. mydomain.com. IN CAA 0 issue "letsencrypt.org" mydomain.com. IN CAA 0 issuewild ";"…
-
Import_file_certificate_pfx format fail
Dear all We have a service running ssl ( client). I have import certificate .pfx format to A10 Please help me Thanks for support Hoang Hung
-
File upload using aXAPI 3.0
As documented at https://documentation.a10networks.com/ACOS/411x/411-P1/ACOS_4_1_1-P1/html/axapiv3/file.html I'm trying to upload text/plain files to use as axflex scripts or bw-lists. So far I haven't been able to POST files with any success. Each API call pushes the control CPU to 100% until the device has been rebooted.…
-
HTTP line too long (len is 31415)
Hi ! Since few days i see in the system log the line: "HTTP line too long (len is 31415)" Its is class of an attack? I can't to determine what IP try to use Long HTTP. How i can troubleshoot this issue? Thanks !!
-
Is there any workround to: VE number in partition can not be greater than 32
We have a: Model = A10 THUNDER TH5430-110 Número de série = TH54453015380057 64-bit Advanced Core OS (ACOS) version 2.7.2-P7-SP3, build 3 Dec-21-2015, 13:08 When We tried the follwing configuration: vlan 1/127 tagged ethernet 1 to 2 router-interface ve 127 We received the follwing message: "VE number in partition can not…
-
[T&C] Example of using SNI with aFleX
In an SSL/TLS handshake, the name of the server being accessed is sent using the SNI extension in the Client Hello message. For example, suppose you access the site https://intranet.a10tests.com, it will show up in the SNI extension as follows: Starting from ACOS 5.1.0, this SNI field can be captured using the aFleX…
-
[T&C] Using DNS over HTTPS (DoH) while preserving Client IP
Thunder CFW enables you to provide DNS over HTTPS (DoH) service to end-users without having to upgrade the DNS infrastructure itself. Here is a sample setup: The client browser (in this case Firefox browser) is configured with a custom DoH URI, which resolves to a VIP on the Thunder CFW: The Thunder CFW configuration is as…
-
[T&C] DNS over HTTPS (DoH) and DNS services on the same VIP
DNS over HTTPS (DoH) is a protocol for securing DNS communication by sending DNS queries and getting DNS responses over HTTPS. In DoH, each DNS query-response pair is mapped into an HTTP exchange. For details, refer to RFC 8484 (https://tools.ietf.org/html/rfc8484). Thunder CFW enables you to provide DoH service to…
-
How to deploy Thunder Container ?
This article provides you the steps on how to deploy A10 Thunder in the cloud native environment. What is Thunder Container ? Thunder Container is a containerized ACOS image that is deployed by using Docker on a host operating system. It can be configured to operate as an Application Delivery Controller (ADC), Convergent…
-
Ansible Playbook Examples for ADC Features
This article provides some Ansible playbook examples for application acceleration and optimization features for Thunder ADC shown below. Each playbook uses the respective acos_axapi module for that feature. A10 acos_axapi module set consists of more than 1,600 modules. Module set can be downloaded from GitHub Repository:…
-
How to automate basic Thunder ADC config using Ansible ?
Ansible is an open-source software tool facilitating configuration management, application deployment, IT, and infrastructure automation. The playbook used in this article provides the steps on how to configure basic Layer 4 VIP (virtual server) on Thunder ADC using Ansible. The playbook contains four “tasks” and uses…
-
Automated Service Discovery using HashiCorp Consul
This article describes how to use the Thunder ADC integration with HashiCorp Consul for automated application delivery. Thunder ADC directly polls associated services catalog from Consul periodically while serving user traffic for load balancing and application security. When service status changes are detected on the…