2.3.1. Declarative - Deploy App using App Services (AS3)¶

You will create a playbook to deploy VS, Pools and associated Members using App Services. Intro to AS3 https://clouddocs.f5.com/products/extensions/f5-appsvcs-extension/latest/userguide/faq.html

Create app services using playbook using AS3

1. Examine playbook playbooks/hackazon.yaml

   Note

   This playbook uses roles which contain their own vars, files and tasks. Grouping content by roles allows easy sharing of playbooks with other users. You may examine the files in roles/hackazon directory.

   • Type ls -R roles/hackazon/
   • Type nano playbooks/hackazon.yaml
   • Type nano roles/hackazon/files/hackazon.json
   • Type nano roles/hackazon/tasks/main.yaml

2. Run this playbook.

   • Type ansible-playbook playbooks/hackazon.yaml

   This playbook will prompt for username and password. Enter admin for both.

3. Verify results in BIG-IP GUI.

4. From the BIG-IP GUI, select Local Traffic->Network Map page. Note there are no virtual server listed. You will need to select Hackazon partition on the top right to view the serviceMain service.

   

5. Add WAF Security Policy

   • Select serviceMain then Security->Polocies
   • Select foo-policy then update

Add Pool Member using AS3

1. Examine then run playbook playbooks/hack_member.yaml
   • Type nano playbooks/hack_member.yaml and note this is using PATCH method
   • Type ansible-playbook playbooks/hack_member.yaml -e @creds.yaml --ask-vault-pass
2. Verify pool member was added to hack_pl
3. Re-run playbook playbooks/hackazon.yaml and note addition of policy and pool member is no longer associated.
4. Run this playbook to teardown.
   • Type ansible-playbook playbooks/destroy_all_services.yaml -e @creds.yaml --ask-vault-pass
5. Verify results in BIG-IP GUI.