06-Feb-2023 14:56 - edited 06-Feb-2023 14:57
I'm trying to find an Ansible module that will actually work for bash against F5 LTMs. I've tried command, shell, and ansible.builtin.shell with no luck.
Alternatively an Ansible module that could execute a shell script already on the F5 LTMs would work as well.
Here are a couple examples of the bash commands I'm trying to execute:
tmsh save sys ucs lb1.ucs scp /var/local/ucs/lb1.ucs email@example.com:/var/local/ucs/
tmsh load sys ucs base.ucs sleep 120 tmsh load sys ucs platform-migrate lb1.ucs sleep 120 tmsh modify cm traffic-group traffic-group-1 ha-order none tmsh modify cm device-group Employee_Sync_Failover devices none tmsh delete cm trust-domain all tmsh modify cm device lb1.fb configsync-ip none unicast-address none mirror-ip any6 tmsh delete net route all tmsh delete net self all tmsh delete net vlan all tmsh modify sys global-settings mgmt-dhcp enabled tmsh save sys ucs USE2-LBEMPL01A.ucs cd /opt/aws/awscli-2.2.29/bin/dist ./aws s3 cp /var/local/ucs/lb2.ucs s3://f5-bubble-sync-fb5095-us-east-2/lb2/lb2.ucs
@alanjohnson7467 For the first section where you are using SCP to copy UCS backups off of your device you might be able to achieve the same thing using the following article.
For that second one, I'm unsure what exactly you are attempting to achieve and I wish I could be a bit more help. You might go into a bit more detail on the second one to see if someone is able to assist.
I appreciate you sharing the article. I'm actually already using crontab to schedule the SCP/UCS commands I posted (as well as the second set of commands). However, there is a desire to use Ansible to do this in my organization wherever possible. Not to mention crontab jobs get whiped away when upgrading TMSH, and there isn't the level of accounting we desire.
For those curious this is the workflow and the reason behind it:
We're using AWS for disaster recovery of one of our physical datacenters. The scripts I shared are a sample of what I came up with to copy an on-prem config to a staging F5 in AWS, with the 2nd script set to run on the staging F5 to load the config via platform-migration, clean-up the config, then send it to a s3 bucket where it will next be downloaded by multiple F5s within our AWS DR network bubble. Each of those F5s have their own cronjobs and scripts to load the config and apply the necessary base configs for them to function (mostly network changes).
@alanjohnson7467 I found the following article that seems like it could be your solution for the UCS backup and SCP but I haven't found anything to perform the second task dealing with AWS.
Hopefully someone else here might have a bit more insite on the second task.