Summary DDoS Hybrid Defender 15.0.0-6.0

Before you begin:

• Use BIG-IP iHealth to verify your configuration file. For more information, see K12878: Generating BIG-IP diagnostic data using the qkview utility.
• Update/reactivate your system or vCMP host license, if needed, to ensure that you have a valid service check date. For more information, see K7727: License activation may be required prior to a software upgrade for the BIG-IP or Enterprise Manager system.
• Ensure that your system is running version 12.x or later.
• Download the .iso file from F5 Downloads to /shared/images on the source for the operation. (If you need to create this directory, use the exact name /shared/images.)
• Configure a management port.
• Set the console and system baud rate to 19200, if it is not already.
• Log on as an administrator using the management port of the system you want to upgrade.
• Check all DNSSEC Key generation's 'expiration' and 'rollover' date:time fields before performing a GTM sync group upgrade. If any of the DNSSEC Key generations are set to rollover or expire during the planned upgrade window, modify the date:time of the 'expiration' and/or 'rollover' fields to extend past the anticipated upgrade window, to a date:time when all units in the sync group will again have GTM config sync enabled.
• Boot into an installation location other than the target for the installation.
• Save the user configuration set (UCS) in the /var/local/ucs directory on the source installation location, and copy the UCS file to a safe place on another device.
• Log on to the standby unit, and only upgrade the active unit after the standby upgrade is satisfactory.
• Turn off mirroring.
• If you are running Application Acceleration Manager, set provisioning to Minimum.
• If you are running Policy Enforcement Manager, set provisioning to Nominal.
• If you are running Advanced Firewall Manager, set provisioning to Nominal.

1. Ensure the system rebooted to the new installation location.
2. Use BIG-IP iHealth to verify your configuration file. For more information, see K12878: Generating diagnostic data using the qkview utility.
3. Log on to the browser-based Configuration utility.
4. Run the Setup utility.
5. Provision the modules.

• The upgrade process installs the software on the inactive installation location that you specify. This process usually takes between three minutes and seven minutes. During the upgrade process, you see messages posted on the screen. For example, you might see a prompt asking whether to upgrade the End User Diagnostics (EUD), depending on the version you have installed. To upgrade the EUD, type yes, otherwise, type no.
• You can check the status of an active installation operation by running the command watch tmsh show sys software, which runs the show sys software command every two seconds. Pressing Ctrl + C stops the watch feature.
• If installation fails, you can view the log file. The system stores the installation log file as /var/log/liveinstall.log.