Class 1: AFM for Azure Ingress/Egress traffic filtering and VPN tunneling

During this lab you will use an ARM template to launch a three NIC deployment of a cloud-focused BIG-IP VE in Microsoft Azure. Traffic flows from the BIG-IP VE to the application servers. This is the standard on-premise-like cloud design where the BIG-IP VE instance is running with a management, front-end application traffic (Virtual Server) and back-end application interface.

Once these devices are deployed you will learn how to create and configure Azure Route Tables to use AFM as the gateway for desired subnets and create associated Ingress/Egress NAT rules and policies.

Steps you will peform

1. Deploy F5 BIG-IP LTM + AFM to new 3-NIC Azure stack
2. Configure BIG-IP to operate as Firewall
3. Configure Azure Route Tables as gateway for desired subnets
4. Configure Ingress Egress and NAT rules
5. Review AFM logs
6. Configure VPN Tunnel to remote BIG-IP

Contents:

• Deploy BIG-IP In Azure
• Configure BIG-IP Base Configuration
• Configure VPN Tunnel