I am trying to automate backups on my F5 LTMs. I have downloaded the following script and tried to run it. For Version 11.x branch https://devcentral.f5.com/wiki/AdvDesignConfig.LTM_Backup_Shell_Script.ashx But it keeps throwing errors With version 10 backup script the bagpipe backup script worked fine. Now that we are running v11 I can't seem to get it to run. Any assistance would be appreciated.

it might help if you tell which errors you get, have you set all variables correctly?

But it keeps throwing errors what is the error message?

Can you provide some information on the errors please? Perhaps you have an old version that contains bigpipe commands?

Are the HTML tags in your script or is that just something DC has added? If they are in your script I'd suggest you copy and paste the script from the website again in a way that doesn't include the tags.

this is mine. bigip [root@ve11a:Standby:Not All Devices Synced] config /var/tmp/backup_cron_scriptv11.sh + tmsh save /sys ucs /var/tmp/BIG-IP_backup Saving active configuration... /var/tmp/BIG-IP_backup.ucs is saved. ++ date +%y%m%d + export a=130905 + a=130905 + export aa=ve11a.acme.com.130905.ucs + aa=ve11a.acme.com.130905.ucs + export b=/var/tmp/ve11a.acme.com.130905.ucs + b=/var/tmp/ve11a.acme.com.130905.ucs + mv /var/tmp/BIG-IP_backup.ucs /var/tmp/ve11a.acme.com.130905.ucs + tar -cf /var/tmp/certs.tar /config/ssl tar: Removing leading `/' from member names + export ff=ve11a.acme.com.130905.certs.tar + ff=ve11a.acme.com.130905.certs.tar + export f=/var/tmp/ve11a.acme.com.130905.certs.tar + f=/var/tmp/ve11a.acme.com.130905.certs.tar + mv /var/tmp/certs.tar /var/tmp/ve11a.acme.com.130905.certs.tar + export c=ve11a.acme.com.130905.crontab + c=ve11a.acme.com.130905.crontab + export cc=/var/tmp/ve11a.acme.com.130905.crontab + cc=/var/tmp/ve11a.acme.com.130905.crontab + cp /etc/crontab /var/tmp/ve11a.acme.com.130905.crontab + export MName=200.200.200.101 + MName=200.200.200.101 + export Log=/var/tmp/log.bigip + Log=/var/tmp/log.bigip + export UserName=root + UserName=root + export UserPassword=password + UserPassword=password + export Machine1f2=ve11a.acme.com.130905.ucs + Machine1f2=ve11a.acme.com.130905.ucs + export Machine1f3=ve11a.acme.com.130905.crontab + Machine1f3=ve11a.acme.com.130905.crontab + export Machine1f4=ve11a.acme.com.130905.certs.tar + Machine1f4=ve11a.acme.com.130905.certs.tar + ftp -nvd 200.200.200.101 + rm -f /var/tmp/ve11a.acme.com.130905.ucs + rm -f /var/tmp/ve11a.acme.com.130905.crontab + rm -f /var/tmp/ve11a.acme.com.130905.certs.tar + RTN_CODE=0 + exit 0 ftpd [root@centos101 ~] ls -l ve* -rw-r--r-- 1 root root 1679360 Sep 5 01:39 ve11a.acme.com.130905.certs.tar -rw-r--r-- 1 root root 253 Sep 5 01:39 ve11a.acme.com.130905.crontab -rw-r--r-- 1 root root 732092 Sep 5 01:39 ve11a.acme.com.130905.ucs

Backup script for F5 LTM and FTP the UCS off to another server

14 Replies

StephanManthey
Nacreous
Sep 09, 2013
here is the code and below is the error:

!/bin/sh -x Name: backup_cron_scriptv11.sh BIG-IP Backup Script This script automates LTM v11 Backups and saves the files with hostname and date off to an FTP server version 1.0 Author: Bhattman Original Date: 01/07/10 Modified by Yih Wen 30/11/12

tmsh save /sys ucs /var/tmp/BIG-IP_backup export a=date +"%y%m%d" export aa=$HOSTNAME.$a.ucs export b=/var/tmp/$aa mv /var/tmp/BIG-IP_backup.ucs $b

tar -cf /var/tmp/certs.tar /config/ssl

export ff=$HOSTNAME.$a.certs.tar export f=/var/tmp/$ff mv /var/tmp/certs.tar $f

Added By Ed Elias 11/26/02

export c=$HOSTNAME.$a.crontab export cc=/var/tmp/$c cp /etc/crontab $cc

export MName=xxxxxxx export Log=/var/tmp/log.bigip

export UserName=xxxxx export UserPassword=xxxxxx

Added and Updated by Ed Elias 11/14/07

export Machine1f2=$aa export Machine1f3=$c export Machine1f4=$ff ftp -nvd ${MName} <<-END 1>&2 > ${Log} user ${UserName} ${UserPassword} bin put ${b} ${Machine1f2} put ${cc} ${Machine1f3} put ${f} ${Machine1f4} quit END rm -f ${b} rm -f ${cc} rm -f ${f} RTN_CODE=$?

exit $RTN_CODE

Error I am receiving: command not found: command not found4: " unknown property ': not a valid identifierort: ': not a valid identifierort: ': not a valid identifierort: mv: target\r' is not a directory command not found1: tar: Removing leading /' from member names tar: \r: Cannot stat: No such file or directory tar: Error exit delayed from previous errors ': not a valid identifierort: ': not a valid identifierort: mv: target\r' is not a directory command not found6: command not found8: ': not a valid identifierort: ': not a valid identifierort: cp: target \r' is not a directory : command not found2: ': not a valid identifierort: command not found2: ': not a valid identifierort: ': not a valid identifierort: command not found5: ': not a valid identifierort: ': not a valid identifierort: command not found8: ': not a valid identifierort: ': not a valid identifierort: ': not a valid identifierort: `

Create directory on BIG-IP /shared/ucs/ as root: mkdir /shared/ucs

Copy the backup script (backupucs) as root via SCP to /shared/backupucs and make it executable: chmod +x /shared/backupucs

Create a SSH public keys as root: ssh-keygen -t dsa

Export the local root public key for remote login on the target / backup server: ssh-copy-id -i ~/.ssh/id_dsa.pub remote_user@your_backup_server

Modify cron on BIG-IP as root: crontab -e

cron tab for root

1-59/30 * * * * /usr/bin/diskmonitor

00 5 * * * /shared/backupucs

The following script will now be triggered by cron each morning 5 a.m..

A current .ucs file with hostname and timestamp in its name will be created and copied to the target server via SCP.

Files older than 7 days will be deleted.

Don´t forget to modify the passphrase. 😉

As the archive contains the private keys, encrypted export should be mandatory.

\! /bin/bash time=`date +%Y_%m_%d_%H%M` unit=`tmsh list sys global-settings one-line | grep -oP '(?<=hostname\s)[^\.]*'` tmsh save /sys ucs /shared/ucs/autoarchive_${unit}_${time}.ucs passphrase 'topsecret' scp /shared/ucs/autoarchive_${unit}_${time}.ucs remote_user@your_backup_server:/data/config/loadbalancer/ find /shared/ucs/ -name "autoarchive*" -mtime +7 -ls >> /var/log/ucsdelete find /shared/ucs/ -name "autoarchive*" -mtime +7 -ls -exec rm -f {} \;
Stephen_Spence_
Nimbostratus
Sep 10, 2013
First of all, thanks for all your replies. Here is the problem that we were having with the script not FTPing: Firewall is blocking the passive mode ftp transfer.

http://blogs.msdn.com/b/asiatech/archive/2009/04/30/iis-ftp-service-hang-due-to-ports-contention-in-passive-mode.aspx

We can request a change for the firewall config to be fixed so that FTP works transparently.

In the mean time, I added a "passive" command in the ftp blurp in the script. This command is a toggle switch command, and when it is run for the first time, it turns off the passive mode (i.e. all ftp transfers take place in active mode). With FTP mode active, script is working fine.

Once again thanks.
Alton_104690
Nimbostratus
Nov 04, 2013
This scripts works with V9 and V10. create the script called ftpbackup.sh "vi ftpbackup.sh" !/bin/sh ftp server ip address HOST='10.2.2.5' ftp user name USER='ftp_user' ftp password PASSWD='passw0rd1234' check if LTM is active node or stanby node A=$(bigpipe failover show | grep -c "active") store date, to appended to end of the ucs file D=$(date +%d_%m_%Y_%H-%M-%S) store the hostname of the ltm node U=$(uname -n) remove all old ucs files rm -f /var/local/ucs/*.ucs case ${A} in if ltm is active do a config sync and wait 60 sec and generate a ucs file "1") bigpipe config sync; sleep 60; bigpipe config save $U-$D; echo " active unit";; if lmt not active wait before creating the ucs file "0") sleep 180; bigpipe config save $U-$D; echo "Standby unit";; esac ftp to remote ftp server ftp -inv $HOST <
fassie_7047
Nimbostratus
Nov 04, 2013
works like a charm