controls: logLevel: info logFilename: /var/log/cloud/bigIpRuntimeInit.log extension_packages: install_operations: - extensionType: do extensionVersion: 1.43.0 extensionHash: 394f6d97219d016e90016874acb09bd27f7907fda4f1730dea0276900b753a1d - extensionType: as3 extensionVersion: 3.50.2 extensionHash: 620f441bebfdce0261045e34bc7c34f2793b05c0aca62c7ec8e22bbb3f4f35c3 - extensionType: cf extensionVersion: 2.1.0 extensionHash: 8420c72a76b456e0a796dcef9f621ab8b0cf71b751d44f285d48ca92bcd40946 extension_services: service_operations: - extensionType: do type: inline value: schemaVersion: 1.0.0 class: Device async: true label: Failover 2NIC BIG-IP declaration for Declarative Onboarding with BYOL license Common: class: Tenant My_DbVariables: class: DbVariables dhclient.mgmt: disable config.allow.rfc3927: enable tm.tcpudptxchecksum: Software-only My_Provisioning: class: Provision ltm: nominal My_Ntp: class: NTP servers: - 0.pool.ntp.org - 1.pool.ntp.org timezone: UTC My_Dns: class: DNS nameServers: - 168.63.129.16 My_System: autoPhonehome: true class: System hostname: '{{{HOST_NAME}}}' My_License: class: License licenseType: regKey regKey: '{{{LICENSE_KEY}}}' admin: class: User userType: regular password: '{{{BIGIP_PASSWORD}}}' shell: bash default: class: ManagementRoute gw: '{{{MGMT_GW}}}' network: default dhclient_route1: class: ManagementRoute gw: '{{{MGMT_GW}}}' network: 168.63.129.16/32 azureMetadata: class: ManagementRoute gw: '{{{MGMT_GW}}}' network: 169.254.169.254/32 defaultRoute: class: Route gw: '{{{DEFAULT_GW}}}' network: default mtu: 1500 external: class: VLAN tag: 4094 mtu: 1500 interfaces: - name: '1.1' tagged: false external-self: class: SelfIp address: '{{{SELF_IP_EXTERNAL}}}' vlan: external allowService: - tcp:443 - udp:1026 - tcp:4353 - tcp:6123 - tcp:6124 - tcp:6125 - tcp:6126 - tcp:6127 - tcp:6128 trafficGroup: traffic-group-local-only - extensionType: cf type: inline value: schemaVersion: 1.0.0 class: Cloud_Failover environment: azure controls: class: Controls logLevel: silly externalStorage: scopingTags: f5_cloud_failover_label: "{{{FAILOVER_TAG}}}" failoverAddresses: enabled: true scopingTags: f5_cloud_failover_label: "{{{FAILOVER_TAG}}}" requireScopingTags: false - extensionType: do type: inline value: schemaVersion: 1.0.0 class: Device async: true label: Failover 2NIC BIG-IP declaration for Declarative Onboarding with BYOL license Common: class: Tenant My_DbVariables: class: DbVariables dhclient.mgmt: disable config.allow.rfc3927: enable tm.tcpudptxchecksum: Software-only My_Provisioning: class: Provision ltm: nominal My_Ntp: class: NTP servers: - 0.pool.ntp.org - 1.pool.ntp.org timezone: UTC My_Dns: class: DNS nameServers: - 168.63.129.16 My_System: autoPhonehome: true class: System hostname: '{{{HOST_NAME}}}' admin: class: User userType: regular password: '{{{BIGIP_PASSWORD}}}' shell: bash default: class: ManagementRoute gw: '{{{MGMT_GW}}}' network: default dhclient_route1: class: ManagementRoute gw: '{{{MGMT_GW}}}' network: 168.63.129.16/32 azureMetadata: class: ManagementRoute gw: '{{{MGMT_GW}}}' network: 169.254.169.254/32 defaultRoute: class: Route gw: '{{{DEFAULT_GW}}}' network: default mtu: 1500 external: class: VLAN tag: 4094 mtu: 1500 interfaces: - name: '1.1' tagged: false external-self: class: SelfIp address: '{{{SELF_IP_EXTERNAL}}}' vlan: external allowService: - tcp:443 - udp:1026 - tcp:4353 - tcp:6123 - tcp:6124 - tcp:6125 - tcp:6126 - tcp:6127 - tcp:6128 trafficGroup: traffic-group-local-only configSync: class: ConfigSync configsyncIp: /Common/external-self/address failoverAddress: class: FailoverUnicast address: /Common/external-self/address failoverGroup: class: DeviceGroup type: sync-failover members: - '{{{REMOTE_HOST_NAME}}}' - '{{{HOST_NAME}}}' owner: /Common/failoverGroup/members/0 autoSync: true saveOnAutoSync: false networkFailover: true fullLoadOnSync: false asmSync: false trust: class: DeviceTrust localUsername: admin localPassword: '{{{BIGIP_PASSWORD}}}' remoteHost: '{{{REMOTE_HOST}}}' remoteUsername: admin remotePassword: '{{{BIGIP_PASSWORD}}}' post_onboard_enabled: [] pre_onboard_enabled: - name: provision_rest type: inline commands: - /usr/bin/setdb provision.extramb 1000 || exit 0 - /usr/bin/setdb provision.restjavad.extramb 1384 || /usr/bin/setdb restjavad.useextramb true || exit 0 runtime_parameters: - name: VAULT_URL type: url value: file:///config/cloud/vault_url - name: SECRET_ID type: url value: file:///config/cloud/secret_id - name: LICENSE_KEY type: url value: file:///config/cloud/license_key - name: BIGIP_PASSWORD type: secret secretProvider: type: KeyVault environment: azure vaultUrl: '{{{VAULT_URL}}}' secretId: '{{{SECRET_ID}}}' - name: SELF_IP_EXTERNAL type: metadata metadataProvider: type: network environment: azure field: ipv4 index: 1 - name: DEFAULT_GW type: metadata metadataProvider: environment: azure type: network field: ipv4 index: 1 ipcalc: first - name: MGMT_GW type: metadata metadataProvider: environment: azure type: network field: ipv4 index: 0 ipcalc: first - name: HOST_NAME type: tag tagProvider: environment: azure key: hostname - name: REMOTE_HOST_NAME type: tag tagProvider: environment: azure key: bigIpPeerHostname - name: REMOTE_HOST type: tag tagProvider: environment: azure key: bigIpPeerAddr - name: FAILOVER_TAG type: tag tagProvider: environment: azure key: f5_cloud_failover_label