F5 BIG-IP

IBM® QRadar® Risk Manager supports the F5 BIG-IP adapter.

The following features are available with the F5 BIG-IP adapter:
  • Neighbor data support
  • Dynamic NAT
  • Static NAT
  • SNMP discovery
  • Static routing

F5 BIG-IP load balancer appliances that run the Local Traffic Manager (LTM) are supported.

The following table describes the integration requirements for the F5 BIG-IP adapter.

Table 1. Integration requirements for the F5 BIG-IP adapter
Integration requirement Description

Versions

10.1 - 13.1

SNMP discovery

Matches F5 BIG-IP in sysOid containing 1.3.6.1.4.1.3375.2

Required credential parameters

To add credentials in QRadar, log in as an administrator and use Configuration Monitor on the Risks tab.

Username

Password

Supported connection protocols

To add protocols in QRadar, log in as an administrator and use Configuration Monitor on the Risks tab.

SSH

Version 10 (Bigpipe) backup commands
Note: On version 10, the adapter sends Bigpipe commands. On versions 11 and later, the adapter sends tmsh commands.

bigpipe global

bigpipe system hostname

bigpipe platform

uptime

bigpipe version show

cat /config/bigip.license

bigpipe db packetfilter

bigpipe db packetfilter.defaultaction

bigpipe packet filter list

bigpipe nat list all

bigpipe vlan show all

bigpipe vlangroup list all

bigpipe vlangroup

ip addr list

bigpipe interface show all

bigpipe interface all media speed

bigpipe trunk all interfaces

route -n

bigpipe route all list all

bigpipe mgmt show all

bigpipe mgmt route show all

bigpipe pool

bigpipe self

bigpipe virtual list all

bigpipe snat list all

bigpipe snatpool list all

b db snat.anyipprotocol

Version 11 and later (tmsh) backup commands
Note: On version 10, the adapter sends Bigpipe commands. On versions 11 and later, the adapter sends tmsh commands.

list sys global-settings hostname

list sys management-ip

show sys memory

show sys hardware

show sys version

list sys db packetfilter

list sys db packetfilter.defaultaction

list sys db snat.anyipprotocol

list net interface all-properties

list net trunk

list net packet-filter

list net vlan all-properties

show net vlan

list net vlan-group all all-properties

show net vlan-group

list ltm virtual

list ltm nat

list ltm snatpool

list ltm snat

list net route

list ltm pool

list net self

list net ipsec

list net tunnels