Applies To:

Show Versions Show Versions

Manual Chapter: Setting General Configuration Properties
Manual Chapter
Table of Contents   |   << Previous Chapter   |   Next Chapter >>

Part of managing the BIG-IP® system involves configuring and maintaining a set of global system properties. These properties allow you to configure:
When you configure general device properties, you are affecting the operation of the BIG-IP system as a whole, rather than just one aspect of it. Similarly, when you configure the general properties related to local traffic or global traffic, you are globally affecting the operation of the local traffic management and global traffic management systems.
Note: For complete information on configuring the Local Traffic ManagerTM module, see the Configuration Guide for BIG-IP® Local Traffic Manager.
The remainder of this chapter describes how to configure and maintain general device and local-traffic properties, using the BIG-IP Configuration utility. For information on configuring general global-traffic properties, see the Configuration Guide for BIG-IP® Global Traffic Manager.
Note: An alternate way to configure general properties is to use either the bigpipe utility or tmsh. For more information, see the Bigpipe Utility Reference Guide or the Traffic Management Shell (tmsh) Reference Guide.
Using the Configuration utility, you can view and configure a number of general BIG-IP system properties. Some of these properties are related to the BIG-IP system as a device, while others are related to local traffic management.
You can view or configure a number of general properties of the BIG-IP system. These properties fall into three main categories: general device properties, Network Time Protocol (NTP) properties, and Domain Name System (DNS) properties.
You can also reload the default geolocation data files that the BIG-IP system uses to source the origin of a name resolution request.
The following procedure provides the basic steps for configuring general properties. Following the procedure are descriptions of the properties that you might need for completing step 2 of the procedure.
1.
On the Main tab of the navigation pane, expand System, and click Configuration.
The General screen opens.
2.
View or configure any settings.
For detailed information on these settings, see the online help and Table 2.1.
Table 2.1 lists and describes the general properties that you can view or configure.
Displays the host name of the BIG-IP system. This name is the same host name that you specified on the main Platform screen.
Reboot - Reboots the BIG-IP system.
Force Offline - Forces the BIG-IP system to an offline state. If the system is a unit of a redundant pair, this button appears on a High Availability screen instead.
Release Offline - Releases the BIG-IP system from a forced offline state. If the system is a unit of a redundant pair, this button appears on a High Availability screen instead.
Enables or disables the network boot feature. If you enable this feature and then reboot the system, the system boots from an ISO image on the network, rather than from an internal media drive. Use this option only when you want to install software on the system, for example, for an upgrade or a re-installation. Note that this setting reverts to Disabled after you reboot the system a second time.
Disabled (unchecked)
Enables or disables the quiet boot feature. If you enable this feature, the system suppresses informational text on the console during the boot cycle.
Enabled
(checked)
Specifies, when enabled (checked), that the system menu appears on the LCD screen on the front of the unit.
Enabled
(checked)
The BIG-IP system uses an IP geolocation database to source data about the origin of a name resolution request. The default database provides geolocation data for IPv4 addresses at the continent, country, state, ISP, and organization levels. The state-level data is worldwide, and thus includes designations in other countries that correspond to the U.S. state-level in the geolocation hierarchy, for example, provinces in Canada. Note that you can only access the ISP and organization-level geolocation data for IPv4 addresses using the iRules whereis command. For more information, about iRules, see http://devcentral.f5.com/.
Tip: If you require geolocation data at the city-level, contact your F5 Networks sales representative to purchase additional database files.
2.
Click Find a Download.
3.
In the F5 Product Family column, find BIG-IP, and then in the Product Line column, click BIG-IP v10.x.
5.
In the Name column, click GeolocationUpdates.
6.
Click I Accept to accept the license.
7.
In the Filename column, click the name of the most recent zip file that you want to download.
8.
In the Ready to Download table, click the download method that you want to use.
12.
Install and load one of the RPM files using the following command sequence. Note that the path and file name are case-sensitive.
geoip_update_data -f </path to RPM file and file name>
The system installs and loads the specified database file.
13.
Repeat step 12 for each of the other RPM files that you saved to the system in step 11.
The system installs and loads the specified database file.
If you want to uninstall an update to the IP geolocation database, you can reload the default geolocation database files using either tmsh or the Configuration utility.
1.
Delete the RPM files that are in the /shared/GeoIP directory.
3.
4.
For the Operations option in the Geolocation area, click the Reload button.
The system reloads the default geolocation database files that are stored in /usr/share/GeoIP.
1.
Delete the RPM files that are in the /shared/GeoIP directory.
2.
3.
Run the command sequence: load / sys geoip
The system reloads the default geolocation database files that are stored in /usr/share/GeoIP.
Network Time Protocol (NTP) is a protocol that synchronizes the clocks on a network. You can use the Configuration utility to specify a list of IP addresses of the servers that you want the BIG-IP system to use when updating the time on network systems. You can also edit or delete the entries in the server list.
1.
On the Main tab of the navigation pane, expand System, and click Configuration.
The General screen opens.
2.
From the Device menu, choose NTP.
This opens the NTP screen.
3.
For the Time Server List setting, add, edit, or remove an IP address:
b) Click Add.
a)
In the Time Server List area, select an IP address.
The IP address appears in the Address box.
b)
In the Address box, change the IP address.
c)
Click the Edit button.
a) In the Time Server List area, select an IP address.
The IP address appears in the Address box.
b) Click the Delete button.
4.
Click Update.
Domain Name System (DNS) is an industry-standard distributed internet directory service that resolves domain names to IP addresses. If you plan to use DNS in your network, you can use the Configuration utility to configure DNS for the BIG-IP system.
When you configure DNS, you create two lists: a DNS lookup server list, and a BIND forwarder server list. The DNS lookup server list allows BIG-IP system users to use IP addresses, host names, or fully-qualified domain names (FQDNs) to access virtual servers, nodes, or other network objects.
The BIND forwarder server list provides DNS resolution for servers and other equipment load balanced by the BIG-IP system, that is, for the servers that the BIG-IP system uses for DNS proxy services.
In addition to adding servers to the DNS lookup server list and the BIND forwarder server list, you can also edit or delete the entries in these lists.
1.
On the Main tab of the navigation pane, expand System, and click Configuration.
3.
In the DNS Lookup Server List area, you can add, edit, or remove a server IP address:
b)
a)
In the DNS Lookup Server List area, select an IP address.
The IP address appears in the Address box.
b)
In the Address box, change the IP address.
c)
Click Edit.
a)
In the DNS Lookup Server List area, select an IP address.
The IP address appears in the Address box
b)
Click Delete.
4.
In the BIND Forwarder Server List area, you can add, edit, or remove a server IP address:
b)
a)
In the BIND Forwarder Server List area, select an IP address.
The IP address appears in the Address box.
b)
In the Address box, change the IP address.
c)
Click Edit.
a)
In the BIND Forwarder Server List area, select an IP address.
The IP address appears in the Address box
b)
Click Delete.
5.
Click Update.
The BIG-IP system includes a set of properties that apply globally to the local traffic management system. These properties fall into two main categories: general local-traffic properties, and persistence properties. You can use the Configuration utility to configure and maintain these properties.
You can configure a number of properties that affect the general behavior of the BIG-IP local traffic management system. In most cases, these properties are not directly related to any one type of local traffic management object, such as a virtual server or a load balancing pool.
The following procedure provides the basic steps for configuring general local-traffic properties. Following the procedure are descriptions of the properties with additional details you might need for completing step 3 of the procedure.
1.
On the Main tab of the navigation pane, expand System, and click Configuration.
The General screen opens.
3.
Configure all properties or retain the default values.
For detailed information, see Table 2.2, following.
4.
Click Update.
Table 2.2 lists and describes the properties that you can configure to manage the behavior of the local traffic management system.
Specifies, when checked (enabled), that the system automatically maps the last hop for pools.
Specifies, when checked (enabled), that the unit is in maintenance mode. In maintenance mode, the system stops accepting new connections and slowly completes the processing of existing connections.
Disabled (unchecked)
Check this setting to enable VLAN-keyed connections. VLAN-keyed connections are used when traffic for the same connection must pass through the system several times, on multiple pairs of VLANs (or in different VLAN groups).
Specifies, when checked (enabled), that the system discovers the maximum transmission unit (MTU) that it can send over a path without fragmenting TCP packets.
Specifies, when checked (enabled), that the system returns a TCP RESET or ICMP_UNREACH packet if no virtual servers on the system match the destination address of the incoming packet. When this setting is disabled, the system silently drops the unmatched packet.
Specifies the number of seconds a node can be left idle by the Fastest load balancing mode. The system sends fewer connections to a node that is responding slowly, and periodically recalculates the response time of the slow node.
Specifies, in percent, the memory usage at which the system stops establishing new connections. Once the system meets the reaper high-water mark, the system does not establish new connections until the memory usage drops below the reaper low-water mark. To disable the adaptive reaper, set the high-water mark to 100.
Note: This setting helps to mitigate the effects of a denial-of-service attack.
Specifies, in percent, the memory usage at which the system silently purges stale connections, without sending reset packets (RST) to the client. If the memory usage remains above the low-water mark after the purge, then the system starts purging established connections closest to their service timeout. To disable the adaptive reaper, set the low-water mark to 100.
SYN CheckTM Activation Threshold
Specifies the number of new or untrusted TCP connections that can be established before the system activates the SYN Cookies authentication method for subsequent TCP connections.
Specifies, in seconds, the amount of time that records remain in the Layer 2 forwarding table, when the MAC address of the record is no longer detected on the network.
When this setting is unchecked (disabled), the BIG-IP system assigns to each VLAN a unique MAC address that comes from a pool of available MAC addresses. If you create enough VLANs to exceed the number of MAC addresses available, the system then begins to assign the same MAC address to multiple VLANs. This is the default value and the most common configuration. When this setting is checked (enabled), the BIG-IP system causes all VLANs to share a single MAC address.
Disabled (unchecked)
Specifies the type of traffic for which the system attempts to forward (instead of reject) Any-IP packets, when the traffic originates from a member of a SNAT. There are two possible values:
TCP and UDP Only: Specifies that the system forwards, for TCP and UDP traffic only, Any-IP packets originating from a SNAT member.
All Traffic: Specifies that the system forwards, for all traffic types, Any-IP packets originating from a SNAT member.
Using the Configuration utility, you can perform certain persistence-related tasks such as managing the way that destination IP addresses are stored in the persistence table, and specifying a data group that contains proxy IP addresses.
The following procedure provides the basic steps for configuring general persistence-related properties. Following the procedure are descriptions of the properties with additional details you might need for completing step 3 of the procedure.
1.
On the Main tab of the navigation pane, expand System, and click General Properties.
The General screen opens.
3.
4.
Click Update.
Table 2.3, lists and describes the properties that you can configure to manage general persistence-related properties.
Specifies how the system manages the destination IP address entries in the persistence table. Note that when either the timeout value or the maximum number of persistence entries is reached, the BIG-IP system no longer adds destination address entries to the persistence table. To ensure that the BIG-IP system can always add entries to the persistence table, either increase the timeout value in the Destination Address Affinity persistence profile, or increase the maximum number of entries allowed.
Timeout: Specifies that entries remain in the persistence table until the BIG-IP system times them out, based on the timeout value configured in the corresponding persistence profile.
Maximum Entries: Specifies that the system stops adding entries to the persistence table when the number of entries reaches the value specified in the Maximum Entries setting, following.
Specifies the maximum entries allowed in the persistence table before the BIG-IP system stops addding entries. Note that you can increase this value with no significant impact to the amount of memory consumed.
Specifies the data group that contains proxy IP addresses. You use this data group to identify the addresses that are to be treated as proxies when you enable the Map Proxies option on a persistence profile.
Table of Contents   |   << Previous Chapter   |   Next Chapter >>

Was this resource helpful in solving your issue?




NOTE: Please do not provide personal information.



Incorrect answer. Please try again: Please enter the words to the right: Please enter the numbers you hear:

Additional Comments (optional)