F5 LTM Config Merge Procedure

Description

To Merge an LTM config from a F5 to another F5 you need to split the bigip.conf file into seperate config files which you need then to import on the destination F5.

Import the config parts with copy-paste into the terminal and with the following tmsh command:

load sys config from-terminal merge

It is recommended to check the config first with verify then check for any resulting errors:

load sys config from-terminal merge verify

Order of import

Importing the F5 config needs a specific order which is recommended. I did this many times and never had a problem migrating a config from one F5 to another.

Check for monitor passwords if used
For external monitors check if run scripts need to be converted. Copy the files from external monitors first if needed.

Check if iRules already exists on the destination F5

If ASM Policies are used, they need to be exported and imported on the new system. ASM Policies are configured in LTM Policies.

Check for invalid url! Since v12 for a location string you need to prepend it with "tcl:"

Check for passwords in the config

If 'ltm profile client-ssl' need to be migrated, clientssl files need to export/import first

Check if ifiles already exists on the destination F5.

Maybe you don't need to migrate this since it is already migrated with the ssl archive above

Check if ifile already exists on the destination F5

If you also migrating APM config you need to export-import now the APM access policies from the source to the destination F5

For migration you can set the new config to "dummy" ip-addresses. So is would be possible to "migrate" one VS by the other.
Only change the real ip-address on the source to a "dummy" ip-address and set the real ip-address on the destination F5.

Migration done...