Forum Discussion

DanS_24772's avatar
Icon for Nimbostratus rankNimbostratus
May 20, 2014

porting config from older hardware to newer (both v11.4.1)



We're upgrading 3 pairs from 1600 to 10000 units and I'm having trouble importing the configs between old and new. Any suggestions on the best way to do this?


What I've done so far:


  1. started by getting basic networking and VLANs working, configuration, along with HA. All pairs now appear OK and configsync and failover is configured.


  2. then I imported certs by export/import and that appears OK.


  3. so I guess next up is irules/datagroups/pools/vips, etc... But I get tons of errors importing bigip.conf... datagroup files complaining (ignoring for now), most worrysome for now is:


01070313:3: Error reading key PEM file /config/filestore/files_d/Common_d/certificate_key_d/:Common:NAME_2.key_19719_1 for profile /Common/NAME: error:0906A065:PEM routines:PEM_do_header:bad decrypt


Any ideas? Should I copy cert files manually from /Common_d ? Is there a way to partially import a UCS, except for networking info? (so I won't overwrite already done config)? Should I use tmsh or bash?




11 Replies