For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

jamesdris's avatar
jamesdris
Icon for Nimbostratus rankNimbostratus
Mar 05, 2019

bigip DNS and LTM big3d version mismatch

My F5 DNS is running on bigip verison 12.1 - big3d version 12.1.3.7.0.0.2 LTM is running 11.6 - big3d version 11.6.2.0.0.495 To setup communication between them I need to upgrade big3d on LTM to 12...
application delivery
BIG-IP
BIG-IP DNS
Dylan_375544's avatar
Dylan_375544
Icon for Cirrocumulus rankCirrocumulus
Mar 05, 2019

You do not need to update the BIG-IP software.

 

You can update big3d on the LTM by running it from the GTM (DNS) HERE is some more info on that topic.

 

Basically if you run it from the DNS to the LTM, if the DNS has a newer version, it will update the LTM to that version.

 

It shouldn't cause any issues with VIPs etc.

 

Hope that helps! If it does, please up-vote and select this answer, it would be greatly appreciated!

 

-Dylan

 

jamesdris's avatar
jamesdris
Icon for Nimbostratus rankNimbostratus
Mar 05, 2019

I tried it, but after big3d_install I ran bigip_add which succeeded. But when I do iqdump I see the following error :

 

SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed

 

I noticed that on the remote LTM /shared/bin/big3d version is higher than /usr/sbin/big3d , could this the reason iqdump is failing ?