ABOUT DEVCENTRAL

DevCentral News Technical Forum Technical Articles Technical CrowdSRC Community Guidelines DevCentral EULA Get a Developer Lab License Become a DevCentral MVP

RESOURCES

Product Documentation White Papers Glossary Customer Stories Webinars Free Online Courses F5 Certification LearnF5 Training

SUPPORT

Manage Subscriptions Professional Services Professional Services Create a Service Request Software Downloads Support Portal

PARTNERS

Find a Reseller Partner Technology Alliances Become an F5 Partner Login to Partner Central

---

©2024 F5, Inc. All rights reserved.

Problem this snippet solves:

This is a python module to simplify using iControl REST.

\n

Install using pip:

\n

pip install iCR\n

or retrieve from https://pypi.python.org/pypi?:action=display&name=iCR&version=2.1\n\n

As simple as:

\n

#!/usr/bin/env python\nfrom iCR import iCR\nbigip = iCR(\"172.24.9.132\",\"admin\",\"admin\")\nvirtuals = bigip.get(\"ltm/virtual\")\nfor vs in virtuals['items']:\n  print vs['name']\n

\n\n

This prints out a list of Virtual Servers.

\n

Supported methods:

\n

• init(hostname,username,password,[timeout,port,icontrol_version,folder,token,debug])

• get(url,[select,top,skip,filter])

  -> returns data or False

• getlarge(url,size,[select])

  -> Used to retrieve large datasets in chunks. Returns data or False

• create(url,data)

  -> returns data or False

• modify(url,data,[patch=True])

  -> returns data or False

• delete(url)

  -> returns True or False

• upload(file)

  -> file is a local file eg /var/tmp/test.txt, returns True or False

• download(file)

  -> files are located in /shared/images, returns True or False

• create_cert(files)

  -> files is an array containing paths to cert and key. Returns name of cert or False

• get_asm_id(name)

  -> name is the name of a policy. Returns an array of IDs or False

• create_hash(name)

  -> name is the name of the partition and policy. eg /Common/test_policy. This reduces the need to retrieve an array of hashes from the BIG-IP. Returns a string.

• get_token()

  -> this retrieves a BIG-IP token based on the username and password and sets it as the token in use. Returns the token ID or False

• delete_token()

  -> This deletes the object token from the BIG-IP and from the object
• create_transaction() -> creates a transaction and returns the transaction number ID as a string, or False. Subsequent requests will be added to the  transaction until commit_transaction is called. Transaction ID is stored in object.transaction
• commit_transaction() -> Commits the transaction stored in object.transaction. Returns True or False
• command(args,[cmd]) -> Runs a command using the arguments string args. Returns the returned output or True on success or False on failure. 
•  Note: Be sure to double-escape single quotes eg \\\\' and single escape double quotes eg \\\"  
• cmd options are ping/save/load/restart/reboot

\n

Module Variables:

\n

• icr_session - the link to the requests session
• raw - the raw returned JSON
• code - the returned HTTP Status Code eg 200
• error - in the case of error, the exception error string
• headers - the response headers
• icontrol_version - set this to specify a specific version of iControl
• debug - boolean True or False to set debugging on or off
• port - set the port ( 443 by default )
• folder - set this to create in a specific partition
• token - use this to set a specific token. If this is set, it will be used instead of basic auth
• select - use this with get to select the returned data
• top - use this with get to return a set number of records
• skip - use this to skip to a specific record number
• transaction - stores the Transaction ID

How to use this snippet:

Examples

\n

Setup a REST connection to a device

\n

#!/usr/bin/env python\nfrom iCR import iCR\nbigip = iCR(\"172.24.9.132\",\"admin\",\"admin\",timeout=10)\n

\n\n

Create a Virtual Server

\n

vs_config = {'name':'test_vs'}    \ncreatevs = bigip.create(\"ltm/virtual\",vs_config,timeout=5) \n

\n\n

Retrieve the VS we just created

\n

virt = bigip.get(\"ltm/virtual/test_vs\",select=\"name\")\nprint \"Virtual Server created: \" + virt['name']\n

\n\n

Set the timeout

\n

bigip.timeout = 20\n

\n\n

Now delete the VS we just created

\n

delvs = bigip.delete(\"ltm/virtual/test_vs\")\n

\n\n

Retrieve ASM policy to ID mapping

\n

policies = bigip.get(\"asm/policies\",select=\"name,id\")\n

\n\n

Print a table of ASM policies with learning mode

\n

print\nprint \"Policy Name                  Learning Mode\"\nprint \"------------------------------------------\"\nfor item in policies['items']:\n    enabled = bigip.get(\"asm/policies/\" + item['id'] + \"/policy-builder\",select=\"learningMode\")\n    print '{:32}'.format(item['name']) + enabled['learningMode']\n

\n\n

File upload

\n

fp = \"/home/pwhite/input.csv\"\nif bigip.upload(fp):\n    print \"File \" + fp + \" uploaded\"\n

\n\n

File download

\n

file=\"BIGIP-12.1.2.0.0.249.iso\"\ndownload = bigip.download(file)\nif not download:\n    print \"File \" + file + \" download error\"\n

\n\n

SSL Certificate creation

\n

In different folder

\n

bigip.folder = \"TestFolder\"\nfiles = (\"TestCert.crt\",\"TestCert.key\")\ncert = bigip.create_cert(files)\nif cert:\n    print \"Certificate \" + cert + \" created\" \n

\n\n

Turn on debugging

\n

bigip.debug = True
\n

Retrieve ASM policy IDs

\n

asm = bigip.get_asm_id(\"dummy_policy\")\nprint len(asm) + \" IDs returned\"\nprint \"ID: \" + str(asm[0])\n

\n\n

Convert an ASM policy name to hash

\n

hash = bigip.create_hash(\"/Common/test-policy\")\nenabled = bigip.get(\"asm/policies/\" + hash + \"/policy-builder\",select=\"learningMode\")\nprint '{:32}'.format(item['name']) + enabled['learningMode']\n

\n\n

Retrieve and use a token

\n

bigip.get_token()\n

\n\n

Delete the token

\n

bigip.delete_token()\n

\n\n

Developed on Python 2.7 but works with v3. Works on TMOS 11.6 onwards though some features may not be implemented, such as tokens.\nIf you use this and have found bugs, would like to discuss it or suggest features then please PM me on DevCentral.

Tested this on version:

Problem this snippet solves:

This is a python module to simplify using iControl REST.

\n

Install using pip:

\n

pip install iCR\n

or retrieve from https://pypi.python.org/pypi?:action=display&name=iCR&version=2.1\n\n

As simple as:

\n

#!/usr/bin/env python\nfrom iCR import iCR\nbigip = iCR(\"172.24.9.132\",\"admin\",\"admin\")\nvirtuals = bigip.get(\"ltm/virtual\")\nfor vs in virtuals['items']:\n  print vs['name']\n

\n\n

This prints out a list of Virtual Servers.

\n

Supported methods:

\n

• init(hostname,username,password,[timeout,port,icontrol_version,folder,token,debug])
• get(url,[select,top,skip,filter]) -> returns data or False
• getlarge(url,size,[select]) -> Used to retrieve large datasets in chunks. Returns data or False
• create(url,data) -> returns data or False
• modify(url,data,[patch=True]) -> returns data or False
• delete(url) -> returns True or False
• upload(file) -> file is a local file eg /var/tmp/test.txt, returns True or False
• download(file) -> files are located in /shared/images, returns True or False
• create_cert(files) -> files is an array containing paths to cert and key. Returns name of cert or False
• get_asm_id(name) -> name is the name of a policy. Returns an array of IDs or False
• create_hash(name) -> name is the name of the partition and policy. eg /Common/test_policy. This reduces the need to retrieve an array of hashes from the BIG-IP. Returns a string.
• get_token() -> this retrieves a BIG-IP token based on the username and password and sets it as the token in use. Returns the token ID or False
• delete_token() -> This deletes the object token from the BIG-IP and from the object
• create_transaction() -> creates a transaction and returns the transaction number ID as a string, or False. Subsequent requests will be added to the  transaction until commit_transaction is called. Transaction ID is stored in object.transaction
• commit_transaction() -> Commits the transaction stored in object.transaction. Returns True or False
• command(args,[cmd]) -> Runs a command using the arguments string args. Returns the returned output or True on success or False on failure. 
•  Note: Be sure to double-escape single quotes eg \\\\' and single escape double quotes eg \\\"  
• cmd options are ping/save/load/restart/reboot

\n

Module Variables:

\n

• icr_session - the link to the requests session
• raw - the raw returned JSON
• code - the returned HTTP Status Code eg 200
• error - in the case of error, the exception error string
• headers - the response headers
• icontrol_version - set this to specify a specific version of iControl
• debug - boolean True or False to set debugging on or off
• port - set the port ( 443 by default )
• folder - set this to create in a specific partition
• token - use this to set a specific token. If this is set, it will be used instead of basic auth
• select - use this with get to select the returned data
• top - use this with get to return a set number of records
• skip - use this to skip to a specific record number
• transaction - stores the Transaction ID

How to use this snippet:

Examples

\n

Setup a REST connection to a device

\n

#!/usr/bin/env python\nfrom iCR import iCR\nbigip = iCR(\"172.24.9.132\",\"admin\",\"admin\",timeout=10)\n

\n\n

Create a Virtual Server

\n

vs_config = {'name':'test_vs'}    \ncreatevs = bigip.create(\"ltm/virtual\",vs_config,timeout=5) \n

\n\n

Retrieve the VS we just created

\n

virt = bigip.get(\"ltm/virtual/test_vs\",select=\"name\")\nprint \"Virtual Server created: \" + virt['name']\n

\n\n

Set the timeout

\n

bigip.timeout = 20\n

\n\n

Now delete the VS we just created

\n

delvs = bigip.delete(\"ltm/virtual/test_vs\")\n

\n\n

Retrieve ASM policy to ID mapping

\n

policies = bigip.get(\"asm/policies\",select=\"name,id\")\n

\n\n

Print a table of ASM policies with learning mode

\n

print\nprint \"Policy Name                  Learning Mode\"\nprint \"------------------------------------------\"\nfor item in policies['items']:\n    enabled = bigip.get(\"asm/policies/\" + item['id'] + \"/policy-builder\",select=\"learningMode\")\n    print '{:32}'.format(item['name']) + enabled['learningMode']\n

\n\n

File upload

\n

fp = \"/home/pwhite/input.csv\"\nif bigip.upload(fp):\n    print \"File \" + fp + \" uploaded\"\n

\n\n

File download

\n

file=\"BIGIP-12.1.2.0.0.249.iso\"\ndownload = bigip.download(file)\nif not download:\n    print \"File \" + file + \" download error\"\n

\n\n

SSL Certificate creation

\n

In different folder

\n

bigip.folder = \"TestFolder\"\nfiles = (\"TestCert.crt\",\"TestCert.key\")\ncert = bigip.create_cert(files)\nif cert:\n    print \"Certificate \" + cert + \" created\" \n

\n\n

Turn on debugging

\n

bigip.debug = True\n

Retrieve ASM policy IDs

\n

asm = bigip.get_asm_id(\"dummy_policy\")\nprint len(asm) + \" IDs returned\"\nprint \"ID: \" + str(asm[0])\n

\n\n

Convert an ASM policy name to hash

\n

hash = bigip.create_hash(\"/Common/test-policy\")\nenabled = bigip.get(\"asm/policies/\" + hash + \"/policy-builder\",select=\"learningMode\")\nprint '{:32}'.format(item['name']) + enabled['learningMode']\n

\n\n

Retrieve and use a token

\n

bigip.get_token()\n

\n\n

Delete the token

\n

bigip.delete_token()\n

\n\n

Developed on Python 2.7 but works with v3. Works on TMOS 11.6 onwards though some features may not be implemented, such as tokens.\nIf you use this and have found bugs, would like to discuss it or suggest features then please PM me on DevCentral.

Tested this on version:

Hey Pete, I'm looking to upload SSL certificate and key, then add them to a virtual server, we're using the Python SDK, any thoughts?

Yes, this is fairly simple - see here and here for uploading files via REST and adding of certs/keys are detailed at https://devcentral.f5.com/s/feed/0D51T00006i7Y3KSAU

Obviously you'd have to create the f5sdk commands for those URLs. Because f5sdk doesn't expose the http method directly but uses CURDLE methods so you would have to select the correct method to match your requirements. For instance you would probably use the create() method to use the POST HTTP method.

fantastic your last comment helps clarify things.

it seems that the certificate should be on the host before I upload it, is there a way to upload it directly from my laptop?

Also.. THANK YOU for the prompt response.

You can upload it to the BIG-IP using iControl REST or just use scp which may be simpler. Then create the SSL certs, SSL profile and add it to the VS.

I will think about adding a function to the iCR module to upload or download a file. Might come in handy

thanks a lot, really really helpful

Tried the \"as simple as\" code at the top that prints the virtual server names and I got the following error: TypeError: 'module' object is not callable. Debugging shows that the line of code throwing the error is \"bigip = iCR(\"yadda\", \"yadda\", \"yadda\")\", with iCR being the module object that isn't callable.

Thoughts?

Also, I'm using Python 2.7. I have been using the f5-sdk package to date and doing what the sample script above does works without issue.

TomServo3428 have you installed the iCR module successfully? Maybe you can PM me with some details and I can try it out myself.

Hey Pete, For whatever reason, an error occurs every time I try to send you a direct message. Errors using iCR, errors trying to send messages on this site... maybe it's me? lol

Can you try sending me a message and I'll see if I can reply successfully to it?

Thanks

Hey Pete, I decided to check out iCR once more and I used the \"as simple as\" example you posted above but I kept getting this error: \"TypeError: 'module' object is not callable\".

I did some digging on the error and per Stack Exchange, the error is caused because the iCR module you import and the iCR class you instantiate are the same name.

To instantiate the iCR class successfully, I updated your sample code to

bigip = iCR.iCR(\"172.24.9.132\",\"admin\",\"admin\")

That is the only way I can run the code in Python 2.7.14 without error.

Glad you've got it working Tom, i'll take a look into this. Feel free to let me know of any improvements that can be made.