BIP-IP F5 LTM – Commands

BIGPIPE

bigtop show statistic summary
b self show show self IP`s
b vlan show show vlans
b interface show show interfaces
b pool [pool name] show show pool
b virtual [virtual name] show show vs
b snat list list snats
b route domain list list route domains
b node [node address] show node status
b node [node address] down session user disabled disable node
b node [node address] up session user enabled enable node
b save save the running config to the config files

TMSH

run util bash enable shell
show sys self-ip show self IP’s
show ltm persistence persist-records show persistence records
list ltm node [node_address] show node status
modify ltm node [node_address] down disable node
modify ltm node [node_address] up enable node
modify net packet-filter all logging enabled enable logging for all packet filters
delete ltm persistence persist-records pool [pool-name] delete persistance records
save config save the entire config to the stored config files
load config replace running config with config from the config files
show sys performance connections historical show the previous connection counts.

ADDITIONAL COMMANDS

http://devcentral.f5.com/wiki/TMSH.BigpipeMappings.ashx

Problem this snippet solves:

Have questions about transitioning from bigpipe to tmsh? Here are some helpful hints. For full documentation see the tmsh Reference Guide on AskF5 .

Important things to remember when examining commands in tmsh:

  • show (usually) provides just the statistical information, with configuration parameters present to provide a level of disambiguation.
  • list provides configuration information, but just variations from the default. For example, “list /ltm nat 192.0.2.1” will only show the “originating-address” information
  • all-properties extends a “list” command to show every configuration option, not just the variations from default.
bigpipe command tmsh Command Comment
b arp show show /net arp all
b arp all delete tmsh delete /net arp all
b class DATA-GROUP mode read modify ltm data-group DATA-GROUP access-mode read-only
b class show show running-config /ltm data-group
b cluster show show /sys cluster all-properties
b config save file.ucs save /sys ucs file.ucs
b config install file.ucs load /sys ucs file.ucs
b config sync run /sys config-sync For v10 config-sync only, where “pull” is optional
b config sync run /cm config-sync from-group/to-group DEVICEGROUPNAME For v11 traffic-group config-sync only
b conn show show /sys connection
b conn show all show /sys connection all-properties Show all connection table properties
b conn ss server node-ip:node-port delete delete /sys connection ss-server-addr node-ip ss-server-port node-port Delete connection table entries for node-ip node-port
b daemon list list /sys daemon-ha all-properties
b db < key name > < value > modify /sys db < key name > value < value > Modify database values
b db Platform.PowerSupplyMonitor disable tmsh modify sys db platform.powersupplymonitor value disable Disables PSU alert if only one PSU in use on Dual PSU system
b db show show running-config /sys db -hidden all-properties
b export my.config.scf save /sys scf my.config.scf v10.x only
b export my.config.scf save /sys config file my.config.scf tar-file my.config.tar v11.0+
b fo show run /util bigpipe fo v10+
b fo show show /sys failover v11+
b fo offline run /sys failover offline v11+ force the unit offline
b fo online run /sys failover online v11+ release offline to go either standby or active
b fo standby run /util bigpipe fo standby v10+
b fo standby run /sys failover standby v11+
b ha table show /sys ha-status all-properties
b ha group show /sys ha-group detail
b hardware baud rate modify /sys console baud-rate v10: sol10621 | v11: sol13325
b system console inactivity timeout # tmsh modify sys global-settings console-inactivity-timeout # Set Serial Console Idle Timeout – replace # with seconds until timeout or “show” to see current timeout setting
b ha table show show /sys ha-status all-properties
b httpd list list /sys httpd To list httpd configuration.
b import my.config.scf load /sys scf my.config.scf v10.x only
b import my.config.scf load /sys config file my.config.scf tar-file my.config.tar v11.0+
b interface show -j show /net interface -hidden all-properties -hidden is not tab completable, but should be shown in the command output on iHealth.
b load load sys config partitions all
b merge load /sys config merge Added in v11. In v10 use bigpipe
b merge /path/to/file.txt tmsh load /sys config file /path/to/file.txt merge Merge a file into the BIG-IP configuration. Added in v11. In v10, use bigpipe
b mgmt show show running-config /sys management-ip
b mgmt route any gateway 192.168.0.1 tmsh create /sys management-route default gateway 192.168.0.1
b monitor show show running-config /ltm monitor (?)
b nat show show /ltm nat all or list /ltm nat all-properties The two tmsh commands are required here since b nat show will list the unit preference and ARP status. Statistical information is shown via “show” while configuration information is shown via “list”.
b node all monitor show list ltm node monitor
b node show show /ltm node
b ntp servers 10.10.10.10 modify sys ntp servers add { 10.10.10.10 }
b packet filter all show show /net packet-filter
b partition list auth partition no “show” command yet, list will only show written partitions
b persist tmsh show ltm persistence persist-records
b platform show /sys hardware
b pool list list /ltm pool
b pool mypool member 192.168.0.1:80 add tmsh modify /ltm pool mypool members add { 192.168.0.1:80 }
b pool mypool member 10.10.10.10:80 down (v10.2.4) tmsh modify ltm pool webbian443 members modify { 192.168.10.16:https { state down } } | (v11.1) tmsh modify ltm pool httppool1 members modify { 10.10.10.10:80 { state user-down } }
b pool show show /ltm pool members
b profile access all stats
b profile auth all show all show /ltm auth profile all The tmsh auth command does not display associated OCSP information shown by bigpipe.
b profile http ramcache show show /ltm profile http
b profile http stats show /ltm profile http
b profile ssl stats show /ltm profile ssl
b profile persist profile_name list all tmsh list ltm persistence profile_name all-properties
b profile tcp show show /ltm profile tcp
b profile tcp stats show /ltm profile tcp
b profile udp show show /ltm profile udp
b profile udp stats show /ltm profile udp
b profile xml show show /ltm profile xml
b reset load / sys default-config v10.x
b reset load / sys config default v11.x
b route show show /net route all
b rule < rule > show all show /ltm rule < rule >
b rule show show /ltm rule all
b rule stats reset reset-stats /ltm rule < rule >
b save save sys config partitions all
b self show show running-config /net self
b snat show /ltm snat
b snatpool show show /ltm snatpool
b software show sys software
b software desired install sys software image NAME volume HDX.Y reboot
b software desired install sys software image NAME create-volume volume HDX.Y v11.0+ : Creates volume and installs software. (Cannot create empty volumes in v11)
b software desired install sys software hotfix NAME volume HDX.Y Installs desired Hotfix to the specified Volume.
b stp show show running-config /net stp all-properties
b syslog list all list sys syslog all-properties
b syslog remote server none modify sys syslog remote-servers none
b syslog remote server test-srv host 192.168.206.47 modify sys syslog remote-servers add {test-srv{host 192.168.206.47}} You can append “remote-port 517” for example to the end of the command to specify the port
b syslog remote server test-srv local ip 172.28.72.90 modify sys syslog remote-servers modify {test-srv{local-ip 172.28.72.90}} The self ip must be non-floating
b system hostname modify sys global-settings hostname NEWHOST.EXAMPLE.COM
b trunk show -j show /net trunk -hidden all
b trunk all lacp show show /net trunk detail
b unit show
b verify load load sys config verify
b version show /sys version Takes grep (but not “head” as in “b version |head”) – for example, grep on build: tmsh show sys version |grep -i build
b virtual address show show /ltm virtual-address all-properties “show” does not show the objects used by the virtual, and list does not show statistics.
b virtual all show all show /ltm virtual all-properties or list /ltm virtual all-properties “show” does not show the objects used by the virtual, and list does not show statistics.
b vlan all show all -j show /net vlan -hidden
b vlangroup all show all show /net vlan-group all
bigstart status|start|stop|restart SERVICE_NAME show|start|stop|restart sys service SERVICE_NAME
bpsh (?) load sys config from-terminal merge Merge config from interactive shell. Paste/type the config objects you want to add. Then type Ctrl+d to complete the submission or Ctrl+c to cancel the input. Added in v11.0.

Linux Commands (Commands only accessible from the CLI)

Linux Command tmsh Comment
arp -an run /util bash -c “arp -an”
crontab -l run /util bash -c “crontab -l”
date run /util bash -c “date”
df -h run /util bash -c “df -h”
df -i run /util bash -c “df -i”
df -ik run /util bash -c “df -ik”
eud_info (version) run /util bash -c “eud_info (version)”
free run /util bash -c “free”
grub default -d run /util bash -c “grub default -d”
grub default -l run /util bash -c “grub default -l”
halid run /util bash -c “halid”
hsb snapshot (version) run /util bash -c “hsb snapshot (version)”
ifconfig -a run /util bash -c “ifconfig -a”
interrupts run /util bash -c “interrupts”
ip -f dnet addr show run /util bash -c “ip -f dnet addr show”
ip -f inet addr show run /util bash -c “ip -f inet addr show”
ip -f inet link show run /util bash -c “ip -f inet link show”
ip -f inet neigh show run /util bash -c “ip -f inet neigh show”
ip -f inet route show run /util bash -c “ip -f inet route show”
ip -f inet rule show run /util bash -c “ip -f inet rule show”
ip -f inet tunnel show run /util bash -c “ip -f inet tunnel show”
ip -f inet6 addr show run /util bash -c “ip -f inet6 addr show”
ip -f inet6 link show run /util bash -c “ip -f inet6 link show”
ip -f inet6 neigh show run /util bash -c “ip -f inet6 neigh show”
ip -f inet6 route show run /util bash -c “ip -f inet6 route show”
ip -f inet6 tunnel show run /util bash -c “ip -f inet6 tunnel show”
ip -f ipx addr show run /util bash -c “ip -f ipx addr show”
ip -f link addr show run /util bash -c “ip -f link addr show”
ip -f link link show run /util bash -c “ip -f link link show”
ip -f link neigh show run /util bash -c “ip -f link neigh show”
ip -f link route show run /util bash -c “ip -f link route show”
ls -las /var/local/ucs run /util bash -c “ls -las /var/local/ucs”
ls -lasLR /dev/mprov/ run /util bash -c “ls -lasLR /dev/mprov/”
ls -lasLR /var/core run /util bash -c “ls -lasLR /var/core”
ls -lasR /boot run /util bash -c “ls -lasR /boot”
ls -lasR /hotfix run /util bash -c “ls -lasR /hotfix”
lsof -n run /util bash -c “lsof -n”
meminfo run /util bash -c “meminfo”
mount run /util bash -c “mount”
netstat -nge run /util bash -c “netstat -nge”
netstat -ni run /util bash -c “netstat -ni”
netstat -pan run /util bash -c “netstat -pan”
netstat -sa run /util bash -c “netstat -sa”
ntpdc -n -c peer 127.0.0.1 run /util bash -c “ntpdc -n -c peer 127.0.0.1”
ntpq -pn run /util bash -c “ntpq -pn”
pci run /util bash -c “pci”
pstree run /util bash -c “pstree”
qkview run /util qkview
rpm -qa run /util bash -c “rpm -qa”
switchboot -l run /util bash -c “switchboot -l” Or use: /sys reboot volume < volume >
sysctl run /util bash -c “sysctl”
top run /util bash -c “top”
vmstat run /util bash -c “vmstat”
who -aH run /util bash -c “who -aH”

Was this article helpful?

Yes No

Related Articles

Leave A Comment?

You must be logged in to post a comment.