How do you backup your BigIP?

Question

So, this isn't iRule related but I'm wondering what other people do. 
We have two BigIP's, an "Active" one and a "Passive" one. So what we do is set up a crontab entry on the primary bigip that config sync's to the secondary every night if it's active, and on the secondary I've created an NFS mount and set up another crontab entry that backs up the entire /config directory onto this export. Also some cleanup includes deleting backups that are a month old.
Incase you are interested, here are the scripts... Also post what you do!
primary bigip, configsync:
!/bin/bash
 Created by WilS to ConfigSync the primary bigip to the secondary bigip
 Added only on the primary bigip
 file: /bin/configsync.sh
 
 Added to /etc/crontab:
 01 1 * * * root /bin/configsync.sh &gt; /dev/null 2&gt;&amp;1
 Variable to make sure we're active
STATE=`/bin/ps1`
 Check to make sure we're primary
if [ $STATE == "Active" ] ; then bigpipe config sync all; fi
secondary bigip, backup after configsync:
!/bin/bash
 
 Created by WilS to backup the secondary bigip to /export/backup
 Added only on the secondary bigip
 file: /bin/backup.config.sh
 Added to /etc/crontab:
 10 1 * * * root /bin/backup.config.sh &gt; /dev/null 2&gt;&amp;1
 Grab the files in /config and tar.date them
cd /
tar zcvf /export/backup/bigip2.`date  +%m%d%Y`.tgz ./config
 Remove all the files that are a month old...
find /export/backup/ -name 'bigip2.*.tgz' -mtime +31 |xargs rm

jrahm · Answer

I was not aware of /bin/ps1, that's certainly shorter than:&nbsp;
&nbsp;FAILOVER=`bigpipe failover show | cut -d" " -f 2`&nbsp;
&nbsp;We also track the sync status so we don't sync unnecessarily:&nbsp;
&nbsp;STATUS=`bigpipe config sync show | grep Status | cut -d" " -f 7`&nbsp;
&nbsp;For backups, we have Alterpoint, so it archives when a configuration change is made on either system.

trevor_lee_9409 · Answer

We have changed syslog-ng to syslog out to an external syslog server, as well as locally still.&nbsp;
&nbsp;We use a CVS script to log into each BigIP and grab the relevant files from /config and add them to CVS.

hooleylist · Answer

wschultz, that looks like a good start.  You might want to consider using the 'b config save /path/to/output.file.ucs' command to create a complete archive of the BIG-IP configuration.  The UCS archive created by the config save function contains the /config directory contents and much more.  &nbsp;
&nbsp;I use the following command to include the hostname, version and date in the filename (.ucs is appended by the config save process):&nbsp;
&nbsp;b config save /shared/tmp/`hostname`_`b version|grep '^BIG-IP Version'|awk '{print $3}'`_`date +%Y%m%d`&nbsp;
&nbsp;You might also consider getting a full UCS archive from both units in the pair as the base network configuration differs between the two units.&nbsp;
&nbsp;Aaron

lori_54451 · Answer

I also use the 'b config save' command. I use the resulting .ucs file to recover the bigip at our DR site. It takes about 10 minutes to recover an image using the .ucs

mxw_108335 · Answer

We use EM (currently on Beta1.4), archiving can be scheduled and rotated automatically on EM.

Forum Discussion

How do you backup your BigIP?

5 Replies

Recent Discussions

SMS server with BIGIP

F5 terminal - help to run commands - disk space full

Can iRule be used to perform exception of IPI category based on Geolocation

[ASM] - what is "Browser Challange file" ?

LDAPS and renegotiation

Related Content

Backup F5 BigIP using RestAPI and PowerShell (again?)

Re: BigIP Report

F5 iApp Automated Backup

XC Backup via API

BigIP Report Old