Using BIG-IQ Device to centrally manage the devices in your network means that you can deploy software images and configurations without having to log in to each individual BIG-IP device.
As an administrator of a number of BIG-IP devices, one of your tasks is to make sure you have as many hardware resources available as possible at any given time. When you use BIG-IQ Device to manage your network, you have a centralized view into the health of your BIG-IP devices. If you see that a managed device has failed and you do not have the time to perform extensive troubleshooting, you have the option to immediately reformat the hard drive of the failed device. You do this through the BIG-IQ Device interface by dragging and dropping stored or downloaded software images onto that device.When you deploy a software (ISO or .iso) image to a BIG-IP device, you are performing a clean install. A clean install means that you reformat the hard drive, clearing the entire device of everything, including its license and configuration files.
You can perform this task only after you have licensed and installed the BIG-IQ system and at least one BIG-IP device running version 11.3 or later.
This task runs a script. For this script to run properly, you must first open specific ports on your EC2 AMI BIG-IQ instance and on any associated EC2 BIG-IP instances. To open these ports, you need additional security group rules in your allow-only-ssh-https-ping security group, and you need to associate these rules with the management interface.
You need to create three rules: two outbound rules for the BIG-IQ instance, and one inbound rule for the BIG-IP instance.
|Group Name||Group Description||Rule Name||Source||Port|
|allow-only-ssh-https-ping||Allow only SSH, HTTPS, or PING||Outbound SSH||0.0.0.0/0||22 (SSH)|
|Outbound HTTPS||443 0.0.0.0/0||443 (HTTPS)|
|Inbound HTTPS||0.0.0.0/0||443 (HTTPS)|