302 - BIG-IP DNS Specialist
For engineers preparing for the F5 302 certification exam
Understand how DNS/GTM really behaves under real traffic.
Understand how to design, configure, maintain, and troubleshoot BIG-IP DNS (GTM) to 302 exam-level standards analysing Wide IP behaviour, load balancing methods, DNS resolution flow, sync groups, delegation and topologies, and high availability across distributed environments.
Enrolment opens: February 1st 2026
Full course access: February 28th 2026
Pricing €499 > Full Course
Created by: Graham Mattingley (15+ years F5 consultant - banking, aviation, government & F5 instructor)"
Last Updated: Jab 30, 2026
Course Overview
In this course, you are provided with a structured understanding of how to design, maintain, and troubleshoot BIG-IP DNS (GTM) solutions in alignment with the 302 certification blueprint. The course includes video training, configuration analysis, DNS flow tracing using tools such as dig, nslookup and practical troubleshooting scenarios covering DNS resolution principles, Wide IP behaviour, load balancing methods, DNS Express, caching mechanisms, ZoneRunner configuration, sync groups, and global high availability across distributed environments.
You will develop the structured diagnostic methodology required to analyse DNS responses, validate delegation and topology decisions, isolate root causes, and resolve complex global traffic management issues to 302 exam-level standards. This course aligns with the official F5 302 BIG-IP DNS Specialist certification exam blueprint.
What's Included
-
Instructor-led, self-paced video training covering DNS principles, GTM architecture, and structured diagnostic methodology
-
DNS flow analysis and configuration diagnostics using the F5 GUI, TMSH, and tools such as dig and nslookup
-
Step-by-step investigation walkthroughs covering Wide IP behaviour, load balancing methods, DNS delegation, topology decisions, caching behaviour, DNS Express, and ZoneRunner configuration
-
DNS resolution trace analysis aligned to 302 blueprint objectives
-
Scenario-based troubleshooting demonstrations and multiple-choice tests to assess exam readiness
-
Private course community access for technical discussion and 302 exam support
Join the 302 Wait List - Free Updates Until April 2026
Receive weekly build updates, preview content, and early access notifications.
What You Will Be Able To Do?
Most engineers can configure DNS. Fewer can confidently diagnose and resolve complex global resolution issues when traffic does not behave as expected. This course builds that structured DNS diagnostic capability.
After completing this course, you'll be able to:
✅ Analyse DNS resolution flow end-to-end - Trace client queries, LDNS behaviour, BIG-IP DNS decisions, and final resource responses to understand exactly where resolution changes
✅ Isolate root causes methodically - Apply structured DNS troubleshooting techniques instead of guessing at Wide IP or pool behaviour
✅ Diagnose delegation and topology issues - Identify misconfigured records, incorrect zone data, topology mismatches, and load balancing misalignment
✅ Analyse DNS Express and caching behaviour - Understand when records are served from cache, DNS Express, or authoritative zones
✅ Interpret DNS responses confidently - Use tools such as dig, TMSH, logs, and statistics to validate resolution behaviour and sync status
✅ Validate high availability and sync groups - Identify configuration drift, sync failures, and global HA inconsistencies across distributed environments
✅ Communicate DNS findings clearly - Explain resolution logic, failover behaviour, and remediation steps to network engineers, application teams, and infrastructure stakeholders
You will leave this course with the confidence to approach BIG-IP DNS incidents calmly and systematically, protecting global availability, ensuring intelligent traffic distribution, and demonstrating real operational authority in production environments.
Course Curriculum
▶️Section 1 – Design and Architecture
11 Sub-Modules | 55 Lessons
-
Sub-Modules and Lessons aligned to 302 blueprint objectives
-
DNS architecture design and global traffic distribution models
-
DNS resolution flow (client, LDNS, authoritative response path)
-
Wide IP structure, pools, and load-balancing decision hierarchy
-
Delegation models, DNS Record types and authoritative zone design
-
Topology-based load balancing and geographic distribution strategy
-
DNS Express architecture, zone transfers, and acceleration planning
-
Global high availability models and sync group architecture
-
Monitor design and availability state planning
-
TTL strategy, caching behaviour, and performance considerations
-
Change planning, architecture validation, and design review methodology
▶️Section 2 – Implement
11 Sub-Modules | 45 Lessons
-
Sub-Modules and Lessons aligned to 302 blueprint objectives
-
Wide IP, pool, and server configuration using GUI and TMSH
-
Load balancing method configuration and fallback behaviour
-
ZoneRunner configuration and DNS record management
-
DNS Express deployment and validation
-
Topology record implementation and traffic control configuration
-
Monitor configuration and availability verification
-
Device trust, sync group configuration, and configuration synchronisation
-
Configuration deployment validation and operational readiness checks
▶️Section 3 – Test and Troubleshoot
11 Sub-Modules | 55 Lessons
-
Sub-Modules and Lessons aligned to 302 blueprint objectives
-
DNS resolution tracing using dig and TMSH
-
Wide IP decision path analysis and response validation
-
Delegation and authoritative record troubleshooting
-
DNS Express and caching behaviour diagnostics
-
Sync failures and configuration drift investigation
-
Load balancing misalignment and fallback behaviour analysis
-
Availability state interpretation and failover validation
-
Structured DNS troubleshooting methodology aligned to exam scenarios
▶️Section 1 – Operations and Support
11 Sub-Modules | 55 Lessons
-
Sub-Modules and Lessons aligned to 302 blueprint objectives
-
Global availability monitoring and health state interpretation
-
Statistics, logging, and operational diagnostics
-
Configuration management, backups, and version awareness
-
DNS performance tuning and TTL optimisation
-
Operational best practices for distributed GTM environments
-
Change control awareness and structured production support
Private Community Included with the Course
Share a private community with other members of this course.
Course community membership is permanent.
✅Ask questions and get practical advice from other course members on the same learning journey.
✅Share real-world scenarios, problems, and solutions.
Want Personalised Support?
Add a 1:1 Strategy Session
Get a private hour with Graham to:
✅ Review your specific DNS/GTM study and knowledge gaps
✅ Review specific areas of the blueprint that are blockers.
✅ Live question sessions to test exam readiness
Additional Costs: €100
16 Hours of Video Lessons
Presentations, F5 GUI and CLI demonstrations, real-world DNS/GTM Virtual deployment scenarios, profile configuration walkthroughs, traffic flow analysis, and architectural design examples aligned to the 302 blueprint.
Labs with GUI, CLI, TCP/SSL DUMP and Postman
Architectural presentations, F5 GUI and TMSH demonstrations, real-world deployment scenarios, profile implementation walkthroughs, traffic flow validation, and high availability configuration exercises aligned to the 302 blueprint.
Lesson Knowledge Checks
Targeted knowledge assessments after each module to reinforce key concepts and ensure you are progressing toward 302 exam readiness. The questions will also include production-level Q&A
Course FAQs
Is this a certification prep course?
How is this different from the 301b course?
Do I need prior BIG-IP certification?
Does this course include practical DNS troubleshooting demonstrations?
Is this course suitable for real-world deployment work, or only the exam?
Instructor
Graham Mattingley
F5 Instructor
Graham Mattingley F5 Instructor
F5-certified expert with 30+ years in application development and 15 years specialising in F5 technologies. I've deployed and secured F5 solutions for banking, aviation, and government systems across Europe. I'm also an app developer and OWASP member, so I teach security from both sides: how apps work and how to protect them.
I don't teach exam shortcuts. I teach real-world security, how DNS/GTM actually behaves under production traffic, how to tune policies without breaking applications, and how to make confident decisions when it's 2 AM and something's on fire.
This is the operational knowledge I wish I'd had 15 years ago, distilled from production deployments you won't find in official training materials.
How this course is delivered
-
Instructor-led, structured video lessons aligned directly to the 301b blueprint
-
Step-by-step configuration walkthroughs using the F5 GUI and TMSH
-
Guided video lab demonstrations showing full architectural builds and validation
-
Clearly structured modules progressing from architecture fundamentals to deployment design
-
Self-paced access, allowing you to study around professional commitments
-
Practical architectural scenarios based on real-world DNS/GTM implementations
Prerequisites & Requirements
-
A valid F5 201 – TMOS Administration certification
-
Understanding of BIG-IP LTM architecture and deployment principles
-
Strong networking fundamentals (OSI Layers 2–4)
-
Familiarity with TCP/IP, DNS protocol fundamentals, and application delivery behaviour
-
Access to a BIG-IP lab environment is strongly recommended for troubleshooting practice
Prior completion of 301a (Architect, Setup and Deploy) is recommended for a stronger understanding of LTM architecture before progressing to DNS specialisation.
What happens next?
-
Join the waiting list to be notified when enrolment opens
-
Receive weekly, blueprint-aligned DNS/GTM troubleshooting scenarios and diagnostic insights while the course is in development
-
Get early access and priority enrolment before the public launch
