F5 redundancy with vcmp

When it comes to HA and vCMP, the vCMP hosts are configured as standalone devices. You only configure HA on the vCMP guests.

 

As to vCMP guest specific configuration, think of the following configuration items: hostname, mgmt address, vlans, non-floating self IP-addresses, route domains, trunk configuration.

 

Other configuration items like nodes, pools, virtual servers, static routes and floating IP adresses can by synchronized.

 

You can easily start building the new cluster member, add it as a trusted peer and to the device group. Try to sync to the group from the member that holds the complete configuration. If it fails to sync, it will give you a hint what could be missing on the new cluster member. Then you add the missing configuration item, and try to sync again.

 

A- Shall we do the HA for vcmp hosts also or only for the vcmp guests respectively

 

• HA will be between the two VCMP Guests only.

B- What config should be prepared in advance on the other standby appliance to sync the config with active appliance

 

1. the host name of each device should be unique to establish HA cluster.
2. Creat HA VLAN on both devices.
3. For config Sync , choose the Self-IP assigned to the HA VLAN from ( Device Management > Devices > Device-name > Device Connectivity > configsync )
4. For Failover monitoring , use both HA Self-IP and for redundancy also use management IP address from ( Device Connectivity > Failover )

C- What config will be sync with the standby appliance (example certificate chain etc) from the active appliance

 

• LTM ( including VS , Pools , iruels ,profiles , and Certificates ), APM , GTM Config will be Synced by default once HA is configured.
• for ASM you need to choose the Device Group in the synchronization tab under security advanced settings.

check this link

 

D- Any other recommendation for successful HA setup.

 

check this link

 

A- Shall we do the HA for vcmp hosts also or only for the vcmp guests respectively

 

• HA will be between the two VCMP Guests only.

B- What config should be prepared in advance on the other standby appliance to sync the config with active appliance

 

1. the host name of each device should be unique to establish HA cluster.
2. Creat HA VLAN on both devices.
3. For config Sync , choose the Self-IP assigned to the HA VLAN from ( Device Management > Devices > Device-name > Device Connectivity > configsync )
4. For Failover monitoring , use both HA Self-IP and for redundancy also use management IP address from ( Device Connectivity > Failover )

C- What config will be sync with the standby appliance (example certificate chain etc) from the active appliance

 

• LTM ( including VS , Pools , iruels ,profiles , and Certificates ), APM , GTM Config will be Synced by default once HA is configured.
• for ASM you need to choose the Device Group in the synchronization tab under security advanced settings.

check this link

 

D- Any other recommendation for successful HA setup.

 

check this link

 

A - vCMP guests will HA to the other vCMP guests. Hosts will not be HA and should be left in standalone mode.

 

B,C, and D - https://support.f5.com/kb/en-us/products/big-ip_ltm/manuals/product/tmos-implementations-12-1-0/4.html