Using BIG-IQ Device to centrally manage the devices in your network means that you can deploy software images and configurations without having to log in to each individual BIG-IP device. Software image files can contain new software, upgrades, or hot fixes. You can choose to deploy a software installation job immediately, or you can save the job for later deployment. While the software installation job runs, you can continue to perform other administrative tasks.
You can centrally deploy software images for new installations, upgrades, or hot fixes to managed physical and virtual devices with just a few clicks.
You can perform this task only after you have licensed and installed the BIG-IQ system and at least one BIG-IP device running version 11.3 or later.
Before you perform this task you must first open specific ports on your EC2 AMI BIG-IQ instance and on any associated EC2 BIG-IP instances. To open these ports, you need additional security group rules in your allow-only-ssh-https-ping security group, and you need to associate these rules with the management interface.
You need to create three rules: two outbound rules for the BIG-IQ instance, and one inbound rule for the BIG-IP instance.
|Group Name||Group Description||Rule Name||Source||Port|
|allow-only-ssh-https-ping||Allow only SSH, HTTPS, or PING||Outbound SSH||0.0.0.0/0||22 (SSH)|
|Outbound HTTPS||443 0.0.0.0/0||443 (HTTPS)|
|Inbound HTTPS||0.0.0.0/0||443 (HTTPS)|
Installing requisite BIG-IQ components onto your managed BIG-IP devices results in a REST framework that supports the required Java-based management services. You must perform this installation task on each device before you can discover it.