Sanjay Shitole, Principle Solutions Engineer

•••• Ansible, Terraform, Puppet••

•••

Customer Feedback

React to Opportunities

CICD Reap Early Benefits Fix Issues quickerAUTOMATE, AUTOMATE, AUTOMATE!

My application needs SSL encryption and

availability

•••

What we can do with Automation ?

Provisioning Tool

Private Data Center

x1000 BIG-IP devices

Public Cloud

x100 BIG-IP VE

Onboard F5 BIG-IP in Private / Public Cloud

SecurityPolicy

Admin Provisioning Tool

iApps

Manage & deploy security policies consistently across your infrastructure or for yourtenants

BIG-IP devices

Development environment

Test environment

Production environment

• Build BIG-IP LTM policies & deploy across multiple environments with consistency

• Deploy ASM/APM/AFM polices using iApps

• Forgetting, or missing, a device when patching or deploying secure config could expose your corporation to attackers both internal and external.

BIG-IP

• Automate routing traffic & connection termination by managing LTM and BIG-IP DNS configurations

• Upgrade/Deploy new applications on the BIG-IP consistently & with low risk

Manage Blue-Green deployments during applications roll up for zero down time

Data Center 1 Data Center 2

Cloud Migration• Provision & Automate BIG-IP infrastructure& configurations in

VMware, OpenStack, AWS, Azure• Using CFT, HEAT templates and so on

• An application can begin in VMware environment but expand to AWS & Azure.

Orchestrate & Automate in multiple private & public cloud environments

F5 & Ansible

Ansible hostBIG-IP Platform

other

Versions 12.X +3

REST/SOAP API calls

• Easy to install • Agentless• ‘Playbooks’ use YAML

Ansible host

FACTS

BIG-IP Platform

other

Versions 12.X +Versions 2.2 + BIG-IP VE

Bigsuds, f5-sdk

1

2

3

REST/SOAP API calls

Name of Ansible module

Parameters

Name of Task

”{{ myVirtualServer_IPAddress }}”

1. Grab template

2. Upload iAppto BIG-IP

3. Deploy Application

from GitHub/F5 Downloads

Input/Parameters provided as JSON

payload

- name: Get iApp from Githubget_url:

url: https://github.com/F5Networks/f5-application-services-integration-iApp/releases/download/v2.0.003/appsvcs_integration_v2.0.003.tmpl

dest: /var/tmpvalidate_certs: False

- name: Add iApp templatebigip_iapp_template:

server: “((inventory_hostname}}"user: “admin"password: “admin"content: "{{ lookup('file', '/var/tmp/appsvcs_integration_v2.0.003.tmpl') }}"state: "present"validate_certs: False

delegate_to: localhost

- name: Deploy iAppbigip_iapp_service:

name: “HTTPApp"template: “<<template_name>>"parameters: "{{ lookup('file',’<<payload.json file>>') }}"server:”((inventory_hostname}}”user: "admin"password: "admin"state: "present"

delegate_to: localhost

SaaS & Multi-tenancy

Introduction•••

Use Case:•••

Introduction••••

Use Case•••••

Introduction•••

Use Case•••

Introduction••••

Use Case•••••

F5 & Terraform

F5 Provider Plugin

Download F5 Provider Binary from Github

Download terraform

Terraform 0.8.1

AWS

Digital Ocean

VMware

Google Cloud

Terraform 0.8.1

AWS

Digital Ocean

F5

Google Cloud

VMwareDevOPs Workstation

Repository

1 2

••

•••

•

••

•

•

•

••

•

•

• Use Terraform as part of infrastructure as code initiative• Deploy F5 in AWS & manage the configuration using Terraform • Deploy F5 configurations from repository using terraform.• Looking to leverage Terraform for auto scaling and automating

development environments

F5 & Puppet

F5 BIG-IP

• Has GEM resource files to communicate and configure BIG-IP

• Ruby SDK to make rest calls

Puppet Forge: https://forge.puppet.com/puppetlabs/f5© 2017 F5 Networks

Configure iApp on BIG-IP device

Use FACTER_urlPuppet command to get Manifest (DSL format)

Modify Manifest parameters for other

BIG-IP devices

Deploy modified Manifest through

Puppet

Introduction•••

Use Case•••

Ansible informationwww.ansible.com/f5Ansible feature requests or issueshttps://github.com/F5Networks/f5-ansible/issuesPuppet Forgehttps://forge.puppet.com/puppetlabs/f5Terraform Providershttps://www.terraform.io/https://github.com/scshitole/terraform-provider-bigipF5 DevCentralhttps://devcentral.f5.com

Give Feedback – Get Points!•Survey will pop up in Mobile App.•Answer the multiple choice.•Submit your question to complete.•Receive 5 points!

Follow us on Twitter and use the #F5Agility17 hashtag!