big-iq implementation prerequisites

Hey Mabdrasol!

 

I think the best way to get started with BIG-IQ is to read the following manual chapters:

 

Manual Chapter: Planning a BIG-IQ Centralized Management Deployment

 

But to answer some of your questions.

 

1. What is the prerequisites for BigIq itself and bigip nodes?

 

Start of with determining the design of the BIG-IQ environment:

 

• Do you only need one or should you configure them in an HA? Are they critical for daily operations?
• Will you only use one IP address or do you need to split them and use one MGMT address and one Self-IP address? You use the MGMT address for accessing the BIG-IQ and the Self-IP addresses for device discovery etc. The recommendation I have received states, "keep it simple".
• How many devices should you deploy? Check out the sizing guide located here:

Manual: BIG-IQ Centralized Management DCD Sizing Guide

 

Then you will need to make sure the BIG-IQ's can reach the BIG-IP's, both routing and firewall wise. There are multiple ports that needs to be opened and all of them are covered in the Planning the BIG-IQ CM Deployment Guide.

 

It's tough to answer all of these questions as this comes down to design and what requirements the organization have.

 

2. Do I need DCD node?

 

A DCD is only used to collect and store alerts, events and statistical data from one or more BIG-IP devices. This could be alerts triggered when clients get violations from the ASM. If this is something you need then it's definitely something you should consider. Most of our customers use Splunk or a different logging solution to capture these alerts in a centralized environment. The positive thing with DCD licenses is that they are free. At least when I spoke with our F5 Sales representative.

 

If you only need BIG-IQ to manage and health monitor your BIG-IP devices, then a BIG-IQ Centralized Management (CM) will be enough. :)

 

I hope this helps!

 

Let me know if you have any further questions :)