Welcome to WWT's F5 Terraform Automation Lab. The intended goal of this lab is to introduce and enable F5 administrators to utilize Terraform to automate, simplify and streamline the deployment of F5 services.

Explore NGINX One, an all-in-one platform that integrates the best of NGINX's offerings into a unified package that includes a cloud-based dashboard and access to F5 Distributed Cloud. Customers get advanced load balancing, web and application server capabilities, API gateway functionalities, and security features. The goal of NGINX One is to provide unparalleled performance, security, and scalability for modern applications, whether they are deployed in the cloud, on-premises, or in hybrid environments.

This lab will provide access to an Openshift cluster running the F5 AI Gateway solution. We will walk through how the F5 AI Gateway routes requests to different models by either allowing them to pass through or, more importantly, securing them via prompt injection checking. We have also added a couple of other tests that will allow for language detection of that input that the F5 AI Gateway can also detect.

Welcome to the World Wide Technology / F5 Virtual Environment (vLab) setup and hands-on F5 201 Exam Lab exercises. The purpose of this guide is to provide a sampling of hands-on exercises to better understand the subjects outlined in the 201-TMOS Administration Exam. F5 certification exams are designed to required hands-on experience to pass the test and these exercises will help you deal with exam questions requiring you to interpret configuration and other outputs from the BIG-IP.

This lab will provide access to an Openshift cluster running the F5 AI Gateway solution. We will walk through how the F5 AI Gateway routes requests to different models by either allowing them to pass through or, more importantly, securing them via prompt injection checking. We have also added a couple of other tests that will allow for language detection of that input that the F5 AI Gateway can also detect.

Welcome to the WWT / F5 Virtual Environment (vLab) setup and hands-on F5 301a Exam Lab exercises. These exercises are designed to reinforce the concepts outlined in the LTM Specialist: Architect, Setup and Deploy 301a certification. F5 certification exams are designed to required hands-on experience to pass the test and these exercises will help you deal with exam questions requiring you to interpret configuration and other outputs from the BIG-IP.

Systems are at higher risk without a concerted, repeatable application security configuration process. In this lab, you will learn how to build a declarative AWAF policy and achieve OWASP Top Ten (2021) compliance with the BIG-IP OWASP Compliance Dashboard. A complete CI/CD pipeline is used to deploy our AWAF policy to the BIG-IP system using Application Services 3 Extension (AS3) and Ansible.

This lab focuses on using Ansible to efficiently manage F5 BigIP configurations. It covers setting up the development environment, working with Ansible inventory, creating playbooks for automating tasks on F5 BigIP devices, deploying configuration changes, and a bonus challenge of setting up an Active/Standby configuration and performing configuration synchronization. The lab aims to provide participants with hands-on experience in automating F5 BigIP configuration management using Ansible.

Several of the fundamental principles of F5 Distributed Cloud (XC) are highlighted in this lab environment. You will be simulating a customer during the lab who needs to verify the safety of an application. The objective is to verify the applications safety of on-premises or application on cloud before and after enabling F5 Distributed Cloud Console WAAP Capabilities by sending attacks to the application.

F5 Distributed Cloud WAF deployed on Regional Edge and App Connect Deployment mode. This deployment model offers an optimal solution for scenarios where backend applications are inaccessible from the internet, lacking a Fully Qualified Domain Name (FQDN) or Public IP. In this case Customer Edge sites can be deployed to connect these "private" customer sites to the XC Global Network via IPSEC tunnels opened from Distributed Cloud Customer Edges to the closes two REs sites. Distributed Cloud WAF is deployed on the Regional Edges, where the services are being advertised to the Internet through anycast IPs. Customer Edges are being deployed on the customer sites and connect to the closest RE and traffic will be inspected by the WAAF security policy. The traffic will then be forwarded across the distributed cloud global network towards an egress Regional Edge and then over an IPSEC tunnel to the Customer edge site where it will be forwarded to the backend applications as pure IP-based traffic.

This lab provides a hands-on introduction to API security and visibility using F5 Distributed Cloud Web App and API Protection (XC WAAP). As APIs continue to grow in number and complexity, they have become a primary target for cyberattacks. This lab explores how to discover, document, and secure both known and shadow APIs using the platform's API Discovery, Schema Validation, and Security Dashboards. Participants will learn how to: Send traffic through the F5 HTTPS Load Balancer to trigger API Discovery and the API Crawler Automatically generate and maintain an API inventory, including undocumented shadow APIs Apply OpenAPI Schema Validation to enforce API conformity and detect anomalies Gain deep insights through advanced API Security Dashboards, including threat levels, sensitive data exposure, authentication status, and risk scores Understand the importance of integrating DevSecOps practices by leveraging IaC and GitHub Actions for API protection deployment By the end of this lab, users will gain critical visibility into their API ecosystem, identify vulnerabilities, and take actionable steps to secure both documented and undocumented APIs—helping to bring shadow APIs into the light.

In this lab, users will experience F5 Distributed Cloud Web App and API protection (WAAP), where organizations can simplify their path to effective security without sacrificing continued business innovation and customer demand. An API-driven approach to application protection enables improved collaboration between networks, security operations, and developers. This lab will use Terraform to deploy a Web App and API protection solution that protects an existing application