diff --git a/docs/.DS_Store b/docs/.DS_Store index 7086cfc..b3da718 100644 Binary files a/docs/.DS_Store and b/docs/.DS_Store differ diff --git a/docs/class4/.DS_Store b/docs/class4/.DS_Store index 588e772..3251478 100644 Binary files a/docs/class4/.DS_Store and b/docs/class4/.DS_Store differ diff --git a/docs/class4/module2/.DS_Store b/docs/class4/module2/.DS_Store index dd804b6..8dd72c4 100644 Binary files a/docs/class4/module2/.DS_Store and b/docs/class4/module2/.DS_Store differ diff --git a/docs/class4/module3/.DS_Store b/docs/class4/module3/.DS_Store index 8dfe09a..0ccfaf4 100644 Binary files a/docs/class4/module3/.DS_Store and b/docs/class4/module3/.DS_Store differ diff --git a/docs/class4/module3/lab2/lab2.rst b/docs/class4/module3/lab2/lab2.rst index b2957bf..466aa71 100644 --- a/docs/class4/module3/lab2/lab2.rst +++ b/docs/class4/module3/lab2/lab2.rst @@ -1,11 +1,47 @@ Rate Limiting protection ======================== +There are many ways to do Rate Limiting in F5XC. In this lab, we will focus on API Protection Rate Limiting. +The goal is to rate limit an endpoint at risk because we discovered an attack or it is a shadow API we are not sure if we should allow or block it. -Subtitle 1 ----------- +Enable Rate Limiting from the Security Dashboard +------------------------------------------------ -Sub Sub title 2 -^^^^^^^^^^^^^^^ +* Go to the Security Dashboard and into your application API Endpoints screen. + + .. image:: ../pictures/security-endpoints.png + :align: center + :scale: 50% + +* Select ``/api/colors`` and click on the 3dots (...) +* Edit Rate Limiting +* The Rate Limiting config is preset automatically, keep ``1sec`` Threshold + + .. image:: ../pictures/rl-colors.png + :align: center + :scale: 50% + +* Apply, Apply ... till Save + +Test your Rate Limiting config +------------------------------ + +It is time to run a traffic generator script to simulate traffic load + +* SSH or WEBSSH to the Jumphost +* Run this script into /home/ubuntu/api-protection-lab folder + +.. code-block:: none + + cd /home/ubuntu/api-protection-lab + bash rate-limit.sh sentence-re-$$makeId$$.workshop.emea.f5se.com + +* You can see a respone code 429 - Too Many Requests + +.. code-block:: HTML + + Error Page + The requested URL was rejected. Please consult with your administrator.

+ Your support ID is a8c0fa99-7f85-4c81-b245-2d7d94457f8a

Error 429 - Too Many Requests

F5 site: tn2-lon

[Go Back] diff --git a/docs/class4/module3/pictures/rl-colors.png b/docs/class4/module3/pictures/rl-colors.png new file mode 100644 index 0000000..cb62ea9 Binary files /dev/null and b/docs/class4/module3/pictures/rl-colors.png differ diff --git a/docs/class4/module3/pictures/security-endpoints.png b/docs/class4/module3/pictures/security-endpoints.png new file mode 100644 index 0000000..e11d090 Binary files /dev/null and b/docs/class4/module3/pictures/security-endpoints.png differ