Forum Discussion
Unable to create F5 in AWS via CFT - no internet access
Hello,
I am moving forward, now stucked at:
+ f5-bigip-runtime-init --config-file /config/cloud/runtime-init.conf --skip-telemetry
024-10-09T14:45:54.733Z [13134]: info: MAC address found for 1.1: 06:f2:15:df:16:7f
2024-10-09T14:45:54.736Z [13134]: info: Primary IP for 06:f2:15:df:16:7f: 172.31.3.200
2024-10-09T14:45:54.739Z [13134]: info: ip and mask for 06:f2:15:df:16:7f: 172.31.3.200/24
2024-10-09T14:45:54.754Z [13134]: info: Interface:1.1
2024-10-09T14:45:54.755Z [13134]: info: MAC address found for 1.1: 06:f2:15:df:16:7f
2024-10-09T14:45:54.759Z [13134]: info: Primary IP for 06:f2:15:df:16:7f: 172.31.3.200
2024-10-09T14:45:54.762Z [13134]: info: ip and mask for 06:f2:15:df:16:7f: 172.31.3.200/24
And nothing is happening. Cant enter the device so no clue :).
- not sure about the routing and how the routing through VPC endpoint exactly works
Thank you
Best regards
- Heath_ParrottOct 09, 2024Employee
What is the first error in the CFT logs? That will tell what is failing. I have attached the screen shot of the VPC endpoints from my isolated environment that works with F5 example CFTs. You have deployed an ec2 instance connect endpoint, not an ec2 api endpoint. You will need the VPC endpoints as listed here - https://github.com/F5Networks/f5-aws-cloudformation-v2/blob/main/examples/DEPLOYMENT-TRAFFIC-FLOWS.md . AWS has documented how VPC interface endpoints were here - https://docs.aws.amazon.com/vpc/latest/privatelink/create-interface-endpoint.html and how gateway endpoints work here - https://docs.aws.amazon.com/vpc/latest/privatelink/vpc-endpoints-s3.html. The Deployment-Traffic-Flows document describes how routing on BIG-IP changes during automated onboarding which influences which route tables and subnets in AWS need the route added to their route tables.
Recent Discussions
Related Content
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com