F5 Distributed Cloud AI Assistant
Streamlining Ops with AI Assistant
The integration of AI assistant with system and access logs, security events, and configuration state presents a potent approach to streamlining operational tasks in F5 Distributed Cloud. By leveraging Natural Language Processing (NLP) and highly-trained models, AI assistant can automatically analyze and interpret vast amounts of log data and telemetry from various sources, identifying patterns and anomalies that might indicate potential issues. Additionally, AI assistant can help in quickly reviewing security events to get vital SecOps insights and facilitate informed decision-making for performance and protection tuning. This confluence of generative AI with Distributed Cloud operational data not only enhances efficiency but also bolsters reliability and security.
Multi-Cloud Networking - Site Posture and Analysis
AI assistant can play a pivotal role in streamlining Multi-Cloud Networking operations by analyzing the administrative state and operation of CE and Secure Mesh Sites. Using real-time data such as traffic patterns and system performance metrics, AI assistant can quickly show overall Site Posture as well as help diagnose potential Site issues, providing relevant follow-up actions where needed. The ability to synthesize vast amounts of Site telemetry data enables AI assistant to provide deep insights and actionable recommendations, reducing the need for manual intervention and allowing teams to focus on more strategic initiatives.
Web App & API Protection - HTTP Request and Security Event Analysis
Utilizing AI assistant to help filter and analyze HTTP Requests and Security Events is a significant win for SecOps on F5 Distributed Cloud. Comprehensive protection is essential for protecting Web apps and APIs from a range of threats, but protection can also generate a substantial volume of security alerts, some of which may be false positives. When leveraging AI assistant, the investigative process can be accelerated using intuitive natural language queries to filter HTTP Requests and Security Events. As a result, SecOps teams can focus more on proactive threat hunting and strategic security planning, ultimately leading to a stronger, more resilient defense against cyber threats.
AI Assistant Queries
Because AI assistant uses Natural Language Processing, queries can be expressed in a number of ways. NLP techniques come into play that help to parse and understand the intent behind the queries. AI assistant identifies words or phrases related to questions such as:
- How many...
- How to...
AI assistant also identifies key action words in queries that imply a request for specific information like:
- Analyze...
- Explain...
- Show...
- List...
AI assistant Queries can be scoped to specific configuration objects like Sites and HTTP load balancers. Queries can also be scoped to a timeframe such as "24 Hours" or "24 h". See the following for example:
- analyze site
mcn-demo-site - show HTTP requests for the last 24 Hours for load balancer
staging_web_fein namespace default
Note: When referencing a specific Site or HTTP load balancer in an AI assistant query, type the relevant names correctly. If referencing an HTTP load balancer, type the namespace name also correctly.
Queries can also be scoped to specific requests and security events when the correct reference is given as part of the query.
- Explain request
0757c3df-197c-4207-95ac-1374c1eda92d - show security events where
bot_info.classificationis suspicious for load balancerstaging_web_fein namespace default
AI assistant queries do not need to be stringently formatted or written exactly like the suggested queries. For example, the following AI assistant queries also generate the same response:
Request Logs
- How to investigate HTTP request logs
- How do I analyze HTTP requests
- Show me how to analyze HTTP logs
Site Status
- Explain site status for mcn-demo-site
- Analyze site mcn-demo-site
WAF Security Events
- Show requests with WAF security events for the last 24 hours for load balancer staging_web_fe in namespace default
- List requests with WAF blocks for the last 24 hours for lb staging_web_fe in ns default
Requests
- Explain request 0757c3df-197c-4207-95ac-1374c1eda92d
- Analyze req 0757c3df-197c-4207-95ac-1374c1eda92d
- Explain req_id 0757c3df-197c-4207-95ac-1374c1eda92d