Applies To:

Show Versions Show Versions

Manual Chapter: Installation and Initial Configuration
Manual Chapter
Table of Contents   |   << Previous Chapter

About installation and initial configuration

BIG-IQ™ system runs as a virtual machine in specifically-supported hypervisors. After you set up your virtual environment, you can incorporate BIG-IQ systems into your network as you would any F5 Networks® device. However, BIG-IQ systems must have open HTTP communication with devices in your network through port 443, which is open by default.

Licensing and initial configuration

BIG-IQ™ is a virtual machine that runs on supported hypervisors. Before you can license BIG-IQ, you must have first set up your virtual environment.

To license BIG-IQ, you must have the base registration key. The base registration key is a character string that the license server uses to verify the type and number of F5 Networks products that you are entitled to license. If you do not have a base registration key, contact your local F5® sales representative (http://www.f5.com).

  1. Using a browser on which you have configured the management interface, type the following URL syntax where <management_IP_address> is the address you specified for device management: https://<management_IP_address>
  2. Log in to BIG-IQ with the default user name admin, and password admin. The Setup utility screen opens.
  3. Click Next. The License screen opens.
  4. In the Base Registration Key field, paste the registration key.
  5. Follow the on-screen instructions to paste the dossier and the license.
  6. Click Next. The screen displays the End User License Agreement (EULA).
  7. Review the EULA and, if you agree with the terms, click Accept.
  8. Click Next. The Platform screen opens.
  9. For the Management Port Configuration setting, specify how to configure the port:
    • If you have a DHCP server, select Automatic to automatically configure the management port IP address, netmask, and management route.
    • Otherwise, select Manual and specify the IP address, network mask, and default gateway.
  10. In the Host Name field, type a fully-qualified domain name (FQDN) for the system. The FQDN can consist of letters, numbers, and/or the characters underscore ( _ ), dash ( - ), or period ( . ).
  11. For the Host IP Address setting, retain the default option Use Management Port IP Address.
  12. From the Time Zone list, select a time zone. The time zone you select typically reflects the location of the BIG-IQ system.
  13. For the Root Account setting, type and confirm a password for the root account. The root account provides console access only.
  14. For the Admin Account setting, type and confirm a password.
  15. For the SSH Access setting, select or clear the check box.
  16. From the SSH IP Allow list, retain the default option of *All Addresses, or specify a range.
  17. Click Next. Typing a password for the admin account causes the system to terminate the login session. When this happens, log in to the system again, using the new password. The system returns to the appropriate screen in the Setup utility.

Configuring an internal VLAN

You must license BIG-IQ™ and specify the management IP address before you define your internal VLAN.

Important: The BIG-IQ system names the internal VLAN you create, internal. This specific name is required for proper functionality. Do not change the name of this VLAN.
You configure the internal VLAN from the Network screen. You can find additional information about the settings on these screens, by clicking the Help tab.
  1. Log in to BIG-IQ with your administrator user name and password.
  2. Click TMOS. The Setup utility screen displays.
  3. Click Next. The Network screen opens.
  4. In the Address field, type the BIG-IQ system's self IP address. This must be an IPv4 address.
  5. In the Netmask field, type the BIG-IQ system's full netmask. For example: 255.255.255.0.
  6. In the VLAN Tag field, type an optional tag number for this VLAN. The tag number can be any integer between 1 and 4094. The system automatically assigns a tag number if you do not specify a value.
  7. For the VLAN Interfaces setting, in the Available list, select the interface that you want to untag or tag for this VLAN, and click the Move (<< or >>) button to move it to the Untagged or Tagged list. You can associate untagged and tagged interfaces with any number of VLANS.
  8. Click Next. The External Network Configuration screen opens.
  9. If you want to create an External VLAN, repeat steps 4-8; otherwise, click Select existing VLAN. Creating an optional external VLAN is not required for the BIG-IQ system to work properly.
  10. Click Finished to save this configuration.

About installing cloud components on the BIG-IP system

This release of BIG-IQ™ Cloud includes both an application delivery controller (ADC) component and an enterprise management component. The ADC component includes support for cloud management and is installed by running a script.

Installing cloud components on the BIG-IP system

You can perform this task only after you have installed both BIG-IQ™ Cloud and a BIG-IP® system running, at minimum, version 11.3 software.
This task updates the BIG-IP system with three services that BIG-IQ Cloud requires:
  • a REST-based RPM endpoint that simplifies deployment of the updates managed by BIG-IQ product
  • a REST framework that supports Java-based management services required by BIG-IQ system
  • a REST framework that supports C++-based management services required by BIG-IQ system
Important: When you run the script that updates the BIG-IP systems, the traffic management interface (TMM) on each BIG-IP device restarts. It is important that, before you run this script, you verify that no critical network traffic is targeted to the BIG-IP devices.
  1. Log in to the BIG-IQ Cloud. ssh root@<BIG-IQ IP Address>
  2. Navigate to the folder in which the files reside. cd /usr/lib/dco/packages/upd-adc
  3. Run the install script. ./update_bigip.sh –a admin –p password <BIG-IP MGMT IP Address>
    Note: You will be prompted multiple times for the BIG-IP root password, because the script uses SSH to connect.

Adding new users

You add a user account to provide access to specific BIG-IQ™ system functionality.

  1. Log in to BIG-IQ with your administrator user name and password.
  2. Click TMOS.
  3. On the Main tab, click System > Users. The Users list screen opens.
  4. Click the Create button. The New User screen opens.
  5. In the User Name field, type the user name.
  6. In the New and Confirm fields, type the password for the new user.
  7. From the Role list, select one of the following roles.
    Option Description
    Administrator This user has complete access to all system functionality and licensed software panels. The administrator performs the tasks required for licensing, adding new users, and cloud management.
    Firewall Manager This user has access only to the firewall software panel, and performs tasks associated only with security.
    Cloud Tenant This user has access only to cloud resources assigned by the administrator.
  8. From the Partition Access list, select an option to specify the administrative partitions this user can access.
  9. If you want to allow this user access to the command line, from the Terminal Access list, select Enabled.
  10. Click the Repeat button to add another user, or click the Finished button to return to the User list screen.
You can now start using the BIG-IQ system features. To start, log out of the system and log back in. Refer to documentation specific to the BIG-IQ license you installed (the BIG-IQ™: Security User Guide or the BIG-IQ™: Cloud Management Guide) for information related to the functionality you are licensed to use.
Table of Contents   |   << Previous Chapter

Was this resource helpful in solving your issue?




NOTE: Please do not provide personal information.



Incorrect answer. Please try again: Please enter the words to the right: Please enter the numbers you hear:

Additional Comments (optional)