Forum Discussion

Tolga_Ercan_Ser's avatar
Tolga_Ercan_Ser
Icon for Nimbostratus rankNimbostratus
Dec 01, 2014

Bigip F5 ve aws edition

Hi,

 

On the deployment preparation phase I come to security groups and it mentions that security group name must be allow-all-traffic otherwise when i deploy f5 ltm aws instance it does not work. As soon as i change the security group name to allow-all-traffic with same rules as before. It works.

 

Any ideas?

 

Thanks

 

4 Replies

  • What "mentions that security group name must be allow-all-traffic..." please? If you use a custom group, what rules are in it?

     

  • https://support.f5.com/kb/en-us/products/big-iq-cloud/manuals/product/bigiq-and-amazon-ec2-setup-getting-started-4-1-0/2.html

     

    Important: The allow-all-traffic security group is critically important for successful operation of the BIG-IP VE on Amazon EC2.

     

    Default bigip ve aws instance works with a different security group name but it seems when bigiq enters the scene that name must be match to allow-all-traffic name otherwise bigiq does not function properly it seems. I could not make it work with different name.

     

    As soon as i set the security group name to allow-all-traffic with the same rules on url example above bigiq and aws and ltm ve instance starts working together?

     

    I try same rules with a different security group name and bigiq + aws connector and instance connection failed with the same rules all accept incoming+outgoing? so it seems that sepecific name applies to function properly?

     

    • Danny_Epperson_'s avatar
      Danny_Epperson_
      Historic F5 Account
      That is correct, the name is the key. You can change the rules but BIG-IQ is specifically looking for the "allow-all-traffic" security group name.