This illustration shows the additional network objects you must create for a typical BIG-IP® VE high availability (HA) configuration in AWS.
In this configuration, the BIG-IP VEs continually communicate their availability status to one another through the HA VLAN and the associated static self IP address on each BIG-IP VE.
To create this configuration, in AWS, you create an HA subnet with primary private IP addresses and network interfaces. Then in BIG-IP VE, you create corresponding objects, represented by the shaded boxes in the diagram.
Before you can configure high availability (HA), follow the steps in the BIG-IP Virtual Edition and Amazon Web Services: Multi-NIC Setup guide to create one BIG-IP® VE instance (BIG-IP A) in an Amazon VPC with multiple subnets.
|1||Deploy a BIG-IP VE instance||The second BIG-IP VE should be in the same VPC as the first. Ensure you assign an IAM
role with HA policy and add the extra, external NIC.
Note: If you do not assign a role when you deploy, you can use an IAM user's keys instead. See the Use an IAM user instead of an IAM role topic for more information.
|2||Create an internal network interface (NIC) and attach it to the instance||You created NICs for the management and external subnets when you deployed the
You must create an internal NIC and reboot, so BIG-IP VE can recognize the new NIC, and hourly instances can license with F5.
|3||Create an Elastic IP address (EIP) for the BIG-IP management interface||An EIP address is a publicly-routable address that provides access to the BIG-IP Configuration utility. If the BIG-IP VE is rebooted, stopped, or terminated, the EIP address persists on that NIC.|
On the new BIG-IP VE instance (BIG-IP B):
|1||Connect to the BIG-IP VE instance and set the admin password||Before you can license and provision BIG-IP VE, use SSH and your key pair to connect to the instance and set a strong password.||In tmsh, type modify auth password admin|
|2||Log in and provision BIG-IP VE||Log in to the BIG-IP Configuration utility (https://<ElasticIP>) and provision BIG-IP VE. If you chose a BYOL license, you must license BIG-IP VE before provisioning.|
|3||Create external and internal VLANs||These VLANs correspond to the external and internal subnets in your VPC.||
|4||Create static self IP addresses for the external and internal VLANs||These addresses should match the private IP addresses you assigned to the external and internal subnets in AWS.||