Post on 21-May-2020
Sanjay Shitole, Principle Solutions Engineer
•••• Ansible, Terraform, Puppet••
•••
Customer Feedback
React to Opportunities
CICD Reap Early Benefits Fix Issues quickerAUTOMATE, AUTOMATE, AUTOMATE!
My application needs SSL encryption and
availability
•••
What we can do with Automation ?
Provisioning Tool
Private Data Center
x1000 BIG-IP devices
Public Cloud
x100 BIG-IP VE
Onboard F5 BIG-IP in Private / Public Cloud
SecurityPolicy
Admin Provisioning Tool
iApps
Manage & deploy security policies consistently across your infrastructure or for yourtenants
BIG-IP devices
Development environment
Test environment
Production environment
• Build BIG-IP LTM policies & deploy across multiple environments with consistency
• Deploy ASM/APM/AFM polices using iApps
• Forgetting, or missing, a device when patching or deploying secure config could expose your corporation to attackers both internal and external.
BIG-IP
• Automate routing traffic & connection termination by managing LTM and BIG-IP DNS configurations
• Upgrade/Deploy new applications on the BIG-IP consistently & with low risk
Manage Blue-Green deployments during applications roll up for zero down time
Data Center 1 Data Center 2
Cloud Migration• Provision & Automate BIG-IP infrastructure& configurations in
VMware, OpenStack, AWS, Azure• Using CFT, HEAT templates and so on
• An application can begin in VMware environment but expand to AWS & Azure.
Orchestrate & Automate in multiple private & public cloud environments
F5 & Ansible
Ansible hostBIG-IP Platform
other
Versions 12.X +3
REST/SOAP API calls
• Easy to install • Agentless• ‘Playbooks’ use YAML
Ansible host
FACTS
BIG-IP Platform
other
Versions 12.X +Versions 2.2 + BIG-IP VE
Bigsuds, f5-sdk
1
2
3
REST/SOAP API calls
Name of Ansible module
Parameters
Name of Task
”{{ myVirtualServer_IPAddress }}”
1. Grab template
2. Upload iAppto BIG-IP
3. Deploy Application
from GitHub/F5 Downloads
Input/Parameters provided as JSON
payload
- name: Get iApp from Githubget_url:
url: https://github.com/F5Networks/f5-application-services-integration-iApp/releases/download/v2.0.003/appsvcs_integration_v2.0.003.tmpl
dest: /var/tmpvalidate_certs: False
- name: Add iApp templatebigip_iapp_template:
server: “((inventory_hostname}}"user: “admin"password: “admin"content: "{{ lookup('file', '/var/tmp/appsvcs_integration_v2.0.003.tmpl') }}"state: "present"validate_certs: False
delegate_to: localhost
- name: Deploy iAppbigip_iapp_service:
name: “HTTPApp"template: “<<template_name>>"parameters: "{{ lookup('file',’<<payload.json file>>') }}"server:”((inventory_hostname}}”user: "admin"password: "admin"state: "present"
delegate_to: localhost
SaaS & Multi-tenancy
Introduction•••
Use Case:•••
Introduction••••
Use Case•••••
Introduction•••
Use Case•••
Introduction••••
Use Case•••••
F5 & Terraform
F5 Provider Plugin
Download F5 Provider Binary from Github
Download terraform
Terraform 0.8.1
AWS
Digital Ocean
VMware
Google Cloud
Terraform 0.8.1
AWS
Digital Ocean
F5
Google Cloud
VMwareDevOPs Workstation
Repository
1 2
••
•••
•
••
•
•
•
••
•
•
• Use Terraform as part of infrastructure as code initiative• Deploy F5 in AWS & manage the configuration using Terraform • Deploy F5 configurations from repository using terraform.• Looking to leverage Terraform for auto scaling and automating
development environments
F5 & Puppet
F5 BIG-IP
• Has GEM resource files to communicate and configure BIG-IP
• Ruby SDK to make rest calls
Puppet Forge: https://forge.puppet.com/puppetlabs/f5© 2017 F5 Networks
Configure iApp on BIG-IP device
Use FACTER_urlPuppet command to get Manifest (DSL format)
Modify Manifest parameters for other
BIG-IP devices
Deploy modified Manifest through
Puppet
Introduction•••
Use Case•••
Ansible informationwww.ansible.com/f5Ansible feature requests or issueshttps://github.com/F5Networks/f5-ansible/issuesPuppet Forgehttps://forge.puppet.com/puppetlabs/f5Terraform Providershttps://www.terraform.io/https://github.com/scshitole/terraform-provider-bigipF5 DevCentralhttps://devcentral.f5.com
Give Feedback – Get Points!•Survey will pop up in Mobile App.•Answer the multiple choice.•Submit your question to complete.•Receive 5 points!
Follow us on Twitter and use the #F5Agility17 hashtag!