This post is a continuation of previously written Part 1 and Part 2. This post will outline the steps that need to be configured on the BIG-IP VE configuration utility to successfully deploy and configure a BIG-IP VE instance.
In the previous parts of the series, we configured the OCI Network and launched a BIG-IP VE instance. Here we will configure the same instance with the necessary configuration to perform basic load balancing to backend application servers.
Configure the BIG-IP VE so that traffic passes through the Application Delivery Controller to your application servers in the backend. The following tasks will need to be performed –
Once you SSH to the Public IP of the management interface and log in with root and default as the password, you are asked to change the root password as shown below.
Once the root password is changed you can then change the admin password by going into the tmsh and executing the modify auth password admin command as below and then entering the passwords. Once that is done save the config using the save sys config command and quit.
You must enter license information before you can use BIG-IP VE.
For Activation Method, if you have a production or Eval license, choose Automatic and click Next. If you chose Manual, do the following:
b. A separate web page opens.
c. On the new page, click Activate License.
d. In the Enter your dossier field, paste the text, and then click Next.
5. Accept the agreement and click Continue.
6. On the Activate F5 Product page, copy the license text in the box. Return to the BIG-IP Configuration utility and paste the text into the License field and click Next.
7. The BIG-IP VE system registers the license and logs you out. When the configuration change is successful, click Continue to provision BIG-IP VE.
In the BIG-IP VE you must create an external, internal and HA_Sync VLANs that correspond with the subnets and VNICs you created on the OCI side.
On the Main tab, click Network -> VLANs and then Create the VLANs as follows. Keep the tagging as untagged for all the 3 VLANs and the interfaces accordingly.
Create the Self IP addresses for the External, Internal and the HA_Sync VLAN. The self IP addresses will need to correspond to the Private IP addresses of the VNICs when the BIG-IP VE instance was created.
The pool members are the actual backend servers to which the traffic will be load balanced.
The Virtual server IP address that will be used on the BIG-IP VE will need to be configured as a secondary Private IP address on the external VNIC of the instance. As shown in the topology diagram any VIP that will be configured in the F5 will first need to be created as a Secondary Private IP address on the External VNIC.
A virtual server listens for the incoming traffic destined for the external IP address. A virtual server needs to be created which then points to the pool for load balancing.
Click Local Traffic -> Virtual Servers. Click Create and configure the Virtual server accordingly.
Once done Click Finished.
Traffic to the BIG-IP VE external IP address that we created for the Virtual Server will now go to the pool members.
Test the Virtual Server by accessing the Public IP address using a browser on Port 80.
In this series of blogs, we demonstrated how to configure a single multi-NIC instance of an F5 BIG-IP Virtual Edition on the Oracle Cloud Infrastructure. What we covered in the posts contains a very basic setup of 4 VLANs – External, Internal, Management, and HA_Sync. You can however use the same principles to configure a complex environment with multiple VLANs and Virtual Servers.
We will be covering a High Availability deployment using a cluster of two BIG-IP VE’s in a future post. So, stay tuned!
Previous Post