Hello, I do have a tricky situation - and running out of ideas.
There is a BigIP 2000 running 11.6.5.2, LTM and APM, multiple Partitions, lots of iRules and 100+ Datagroups. As an upgrade is needed, we want to test that on a VE. I only have GUI and ssh access to that virtual machine via the management IP.
How can i copy the full config from the BIGIP 2000 onto the VE?
I have tried a ucs (no-license and no-plattform), but that failed.
So used a scf and modified the network settings before, but failed due to the references to the datagroups.
Then copied the full filestore manually over, also the partition folder incl all bigip.confs.
But failed again, as probably this known issue kicks in: "K50710744: Using tmsh to load the configuration from the terminal or from a file fails when an external file is referenced"
For some partitions and their datagroups i followed the recommendation and created manually, and saw them in GUI.
So the VE had all partitions, SSL, and datagroups, as well as the objects in Common created.
used 'tmsh load sys config file' per partition but no success again.
Gave it another try today - lost again: the original admin/root accounts got overwritten. but can use my "personal-admin" via ssh, but tmsh is not possible, GUI does not come up, and I have no root account - so, need someone on the VCenter to access, log in via root and restore my init_ucs from the VE.
Probably there is something simple i miss here! Can someone please share some light?
thanks for that detailed answer! I did not know about the f5mku before 😉 thanks again.
Well, now as i got access back, I got the key and installed it on the VE.
Interface namings are the same 1.1 = 1.1.
I got messages that interface settings were wrong and set "media-fixed 10000T-FD" on all int: 1.1 - 4
As the 2000 has 1.1 - 1.8 and 2.1 & 2 (here is a trunk), i deleted the interface config 1.5-1.8, and also changed the trunk interfaces to 1.3 and 1.4.
followed your guideline, no errors!
But now it shows:
01071635:3: /Common/management-ip: Conflicting configuration. Management-ip can't be created manually while DHCP is enabled. Do 'tmsh modify sys global-settings mgmt-dhcp disabled' before manually changing the management-ip. Unexpected Error: Loading configuration process failed.
why ? the management ip is configured:
list sys management-ip
sys management-ip 10.107.127.6/26 {
description static-fallback
}
and dhcp is disabled:
list sys global-settings mgmt-dhcp
sys global-settings {
mgmt-dhcp disabled
}
this stops the load process, but what can I change here? Any help is welcome.
i restored another ucs which i took a few days ago - all fine, and VE came back. admin / root account and all processes fine.
startet with your guideline: put key on the VE, and then load the modified UCS, but again:
Oct 15 21:53:35 xxxxxxxk1 err mcpd[7184]: 01071635:3: /Common/management-ip: Conflicting configuration. Management-ip can't be created manually while DHCP is enabled. Do 'tmsh modify sys global-settings mgmt-dhcp disabled' before manually changing the management-ip.
its done on the GUI, ran the config utility, checked via tmsh ... ? no idea what else too check.
old ucs from the VE i can restore / load without an issue.
all managment IPs are static: on VE and BIGIP, verified that mgmt-dhcp is disabled on VE too.
on the VCenter i am told that no dhcp settings made as well.
modified the bigip_base.conf from the BIGIP.ucs with interface and trunk settings, as well new mgmt iP.
did f5mku -r (as mentionde above and in K9420).... and load the ucs -> receive still the message above: "01071635:3: /Common/management-ip: Conflicting configuration."
I search and found that Bug ID 653928, which is not a match and states there must be further errors.
looking at ltm log shows:
Oct 16 16:13:50 xyz err mcpd[7201]: 010713d0:3: Symmetric Unit Key decrypt failure - decrypt failure
Oct 16 16:13:50 xyz notice mcpd[7201]: 01071029:5: Symmmetric Unit Key decrypt
