(usefull) config export to csv for partitions
Hello, I wrote a shell script to export the most important config to a csv file. This was inspired from some other posts. The script runs on bash from a LB. For the CSV import to excel, you need to change the column B(named as VIP) to TEXT and enable word-wrap to the hole chart. The script collects field by field from running system. If you have a lot of configuration it can be need some time to finish. You can start with SCRIPTNAME PARTITION > EXPORTcsv direct from bash not tmsh. I hope it helps somebody, Cheers NetSnoopy
F5 AS3 API call to change Admin State of VIP not working
Hi All, Using below API call to change admin-state of virtual service(vip) but its getting failed. kindly suggest payload. https://x.x.x.x/mgmt/shared/appsvcs/declare Body: [{"op": "add", "path": "/well/vip_prod_avx/enable", "value": "true" }] Response: { "code": 422, "errors": [ "/well/vip_prod_avx/enable: should be boolean" ], "declarationFullId": "", "message": "declaration is invalid" }
LTM Traffic Groups Failover - Is Layer 2 needed?
Dear All, For years we have connected Active-Standby LTMs with a common VLAN for VIP-Bound traffic (and responses). We use traffic groups with a shared "floating ip" which is meant to float across to the standby unit in the same VLAN following an HA Event. Our failover heartbeats happen separately across dedicated sync cables and a management port. VIPs are pointed at the LTM's floating IP address using static routes, which minimises ARP during a failover. I have been busy building an EVPN fabric and I would now like to consider the options for migrating the LTM Active-Standby pair onto it. My preference would be to connect the two LTMs to separate leafs and use Cisco's HMM track to inject the static routes into BGP when the connected LTM becomes active (i.e. starts responding to the floating IP). This is how Cisco recommend connecting a load-balancer to an EVPN fabric (see "Firewall Failover with Static Routes"). Ideally I would like to remove the L2 common VLAN between the Active and Standby unit, but still float a single IP address between the devices. Could you advise if the LTM will allow a floating traffic-group IP to be floated to a unit which isn't in the same L2 broadcast domain? Does the LTM issue a GARP when taking over the floating IP? I guess that if the above isn't possible, an MLAG/VPC up to a leaf pair would be the way to go and just connect both F5s to the same leaf pair. The question about L2 connectivity between LTM units has been asked before, but I didn't see any firm answers. Thanks in advance. James.Super-Netops Training lab3 fails because of expired ansible license
Hi - anyone here who controls the lab environment for the Super-Netops labs in Ravello environment ?? I'm running into the problem that lab 3.1 fail on step 1 under "Tower Core Objects". Whe I try to run this step specifially (not in the runner) - I get '403 forbidden' and details: "License has expired". Looking int the Ansible Tower it seems that the license ran out on June 20th 2019 !!?? Can anyone fix this please so I can continue with the lab??....which is very interesting and useful by the way, although having to work through the Linux Jumphost Console connection is a bit slow and difficult (bad resolution). Thanks, Arnór
Failing over of a Virtual F5 configuration to another location using Zerto restore process
We are preparing a process for disaster recovery to use Zerto to copy a server had has our virtual F5 configuration to another server at another facility. What needs to be completed by means of moving license keys and changing MAC to recognize the F5 configuration.Change DNS GTM Self IP
Greetings, My approach is to take the DNS I will not change out of the sync group. Then, change the LTM gateway pool, and Link, listener, self address on the DNS, then change LTM VS addresses. After that join the other DNS to the sync group running gtm_add <dns_on_syn_group>. Let me know if there is a KB for this change, I didn't find it or if any of you have done that. Edouard
