F5 Logo MyF5
Search
  1. MyF5 Home
  2. End-of-Life Products
  3. BIG-IP 1.x - 4.x
  4. BIG-IP Controller Reference Guide, version 3.2
  5. BIG-IP Reference guide v3.2: Configuration Utilities
Manual Chapter : BIG-IP Reference guide v3.2: Configuration Utilities

Applies To:

Show Versions Show Versions

BIG-IP versions 1.x - 4.x

  • 3.2 PTF-01, 3.2.3 PTF-01, 3.2.3, 3.2.0
Manual Chapter
Table of Contents | << Previous Chapter | Next Chapter >>

4

BIG-IP Controller Configuration Utilities


Introducing the BIG-IP Controller configuration utilities

The BIG-IP Controller includes a number of configuration utilities. These utilities allow you to reconfigure portions of your installation after initial configuration.

The following configuration utilities are available on the BIG-IP Controller:

  • config
    This utility is also known as the First-Time Boot utility. This utility runs all the other utilities required to configure the BIG-IP Controller.
  • config_failover
    Use this utility to prepare a new redundant system for the sync commands that synchronize redundant controllers.
  • reconfig-httpd
    Use this utility to reconfigure the web server on the BIG-IP Controller.
  • config_telnetd
    Use this utility to configure the Telnet and FTP daemons.
  • config_sshd
    Use this utility to configure the SSH daemon.
  • config_rshd
    Use this utility to configure the RSH daemon.
  • config_synckey
    Use this utility to synchronize the security keys between LB and International redundant BIG-IP Controllers.

config

Description

This utility starts automatically the first time you boot up a BIG-IP Controller. The config utility, referred to as the First-Time Boot utility, is a wizard that walks you through a brief series of required configuration tasks. These tasks include defining a root password and configuring IP addresses for the interfaces. You can run the First-Time Boot utility to reconfigure a controller.

The First-Time Boot utility is organized into three phases: configure, confirm, and commit. Each phase walks you through a series of screens, presenting the information in the following order:

  • Root password
  • Host name
  • Default route (typically a router's IP address)
  • Time zone
  • DNS proxying
  • Interface settings for the each network interface
  • Configuration for BIG-IP Controller redundant systems (fail-over IP address)
  • IP address for remote administration
  • Remote administration access for vendor support
  • Settings for the BIG-IP web server
  • Web server administration access for vendor support

    First, you configure all of the required information, then you have the opportunity to confirm each individual setting or correct it if necessary, and then your confirmed settings are committed and saved to the system. Note that the screens you see are tailored to the specific hardware and software configuration that you have. If you have a stand-alone system, for example, the First-Time Boot utility skips the redundant system screens.

    To run the First-Time Boot utility, type in the following command: 

  config

config_failover

Description

You must run the config_failover script on the second controller in a redundant system in order to share keys with the peer BIG-IP Controller.

The script prompts you for the root password of the other controller in the redundant system. After confirming your input, the config_failover script attempts to access the peer system and configure both systems to communicate with one another. This provides the secure communication channel the controllers use to exchange configuration data when you run the bigpipe configsync option, or use the Config Sync button in the Configuration utility.

Type the following command on the command line to run the config_failover script: 

  config_failover

reconfig-httpd

Description

Use the reconfig-httpd configuration utility to reconfigure the HTTPD server on a BIG-IP Controller.

This script prompts you for an IP address from which administrators can access the BIG-IP Controller through the BIG-IP web server. You can use wildcard characters (*) to include all addresses from a specific part of the network. This utility also prompts you to create a support account for access by technical support.

If the service port for the BIG-IP web server (httpd) is closed, this script automatically opens the service port to permit access to the BIG-IP web server.

To run the BIG-IP web server configuration utility, type in the following command: 

  reconfig-httpd

config_telnetd

Description

Use the config_telnetd configuration script to configure the Telnet and FTP servers on a BIG-IP Controller. The script prompts you to configure each service independently. This allows you to enable Telnet but not FTP, for example.

The script prompts you for a configuration address for each service from which administrators may access the BIG-IP Controller. You can use wildcard characters (*) to include all addresses from a specific part of the network. This utility also prompts you to create a support account for access by technical support.

If inetd is not currently configured, this script configures inetd for the requested services. If the ports for Telnet or FTP are closed, this script opens the ports to permit Telnet or FTP connections to the BIG-IP Controller.

To run the Telnet/FTP configuration utility, type in the following command: 

  config_telnetd

Note: Running config_telnetd again replaces the current configuration.


config_sshd

Description

Use this utility to configure the secure shell (SSHD) server on a BIG-IP Controller. This utility prompts you for an IP address from which administrators may access the BIG-IP Controller with SSH. You can use wildcard characters (*) to include all addresses from a specific part of the network. This utility also prompts you to create a support account for access by technical support.

If the service port for ssh is closed, this script opens the service port to permit SSH connections to the BIG-IP Controller.

To run the secure shell configuration utility, type in the following command: 

  config_sshd

Note: Re-running config_sshd again replaces the current configuration.


config_rshd

Description

Use the config_rshd configuration utility to configure the remote shell (rshd) server on a BIG-IP Controller. This utility prompts you for an IP address from which administrators may access the BIG-IP Controller. You can use wildcard characters (*) to include all addresses from a specific part of the network. This utility also prompts you to create a support account for access by technical support.

If inetd is not currently configured, this script configures inetd for the remote shell server (rshd). If the service port for rsh is closed, this utility opens the service port to permit rsh connections to the BIG-IP Controller.

To run the rsh configuration utility, type in the following command: 

  config_rshd

Note Running config_rshd again replaces the current configuration.


config_synckey

Description

Use the config_synckey utility to store the BIG-IP web server administrator password in an HTTP-compatible format for a BIG-IP Controller. This password format is used by the bigpipe and Configuration configsync options on the BIG-IP Controller.

To run the key synchronization utility, type in the following command: 

  config_synckey

Note: The web-based password is stored in the BIG/db database with an extremely simple form of encryption. This is the same form of encryption used by web browsers and clients to exchange the authentication key back and forth, so it is no less secure than actually logging in to a website.

Table of Contents | << Previous Chapter | Next Chapter >>
Contact Support Contact Support

Have a Question?

Support and Sales >

About F5

Education

F5 Sites

Support Tasks




©2023 F5 Networks, Inc. All rights reserved.


Trademarks Policies Privacy California Privacy Do Not Sell My Personal Information