Releases: F5Networks/f5-aws-cloudformation
v2.6.2
This minor release contains the following modifications:
- Renamed file names for the experimental hourly/BYOL+BIGIQ autoscale LTM/WAF templates and experimental READMEs
- Multiple READMEs updates
Released on 11/02/17
v2.6.1
This minor release was for the following modifications to release v2.6.0:
-
Updated the Security Groups created by the template to correctly allow BIG-IP licensing from BIG-IQ.
-
Updated the Security Groups created by the template to correctly allow cluster configuration in the HA templates.
Released on 10/10/17
v2.6.0
Supported
-
New master election process for auto scale templates
To increase the efficiency of our auto scale templates, all our BIG-IP auto scale templates now have the ability to seamlessly select a new master BIG-IP VE instance in the event that the original master instance is unavailable. This provides a smoother cluster deployment and ensures your service is uninterrupted. -
Standalone and Cluster templates create Security Groups
All of the standalone and cluster AWS templates now automatically create Security Groups, removing the prerequisite step of manually creating these groups before launching the template. These new Security Groups include the necessary subnet and rule configuration, greatly simplifying the deployment. -
Option to send statistics
All templates now include an option to send anonymous statistics to F5 Networks to help us improve future templates. None of the information we collect is personally identifiable. This information is critical to the future improvements of templates, but should you choose not to send statistics, this information will not be sent. See the individual README files for the types of statistics. -
Virtual server configuration instructions
All AWS standalone and cluster README files now include instructions on manually creating virtual servers on the BIG-IP VE. These procedures provide step-by-step guidance on quickly getting your BIG-IP VEs configured to start serving traffic to your servers through the BIG-IP system. -
5Gbps throughput options for Auto Scale templates
All of the AWS supported templates, including the auto scale templates, now have the option of using BIG-IP VEs with 5Gbps of throughput. This option enables the BIG-IP VE to handle high volumes of traffic with ease, allowing you to consolidate application and security services on a single platform. -
Matrix for tagged releases
F5 has created a matrix that contains all of the tagged releases of the F5 Cloud Formation Templates (CFTs) for Amazon AWS, and the corresponding BIG-IP versions, license types and throughputs available for a specific tagged release. See https://github.com/F5Networks/f5-aws-cloudformation/blob/master/aws-bigip-version-matrix.md.
Experimental
-
Auto Scale based on vCPU
This release introduces new options for the experimental AWS Auto Scale LTM and WAF templates. In addition to scaling up and down based on bandwidth/throughput, you can now choose to scale based on metrics from the virtual CPU (vCPU). This provides a new level of flexibility, enabling you to more granularly configure scaling thresholds. -
Existing production stack templates launch without requiring EIPs
These experimental templates launch without an Elastic IP Address (EIP), which are required in the supported existing stack templates. This allows organizations to operate their BIG-IP VEs privately with no public external access. These templates allow trusted users management access to the BIG-IP VEs and perform ADC functions in private network environments. Access to the AWS VPC can be achieved using a VPN connection, AWS Direct Connect, or VPC peering. -
Auto Scale WAF using BYOL licensing via BIG-IQ
This experimental template allows you to use a BIG-IQ device to license BIG-IP VEs using BYOL licenses in an auto scale WAF deployment. Additionally, the BIG-IP device(s) in the auto scale deployment will handle revoking licenses from the BIG-IQ LM when an instance is terminated as a part of the scale down process, allowing you more control over your available licenses.
Released on 10/5/17
v2.5.2
This release contained the following CFTs for the AWS Marketplace:
New 12 templates AWS Marketplace HA Across AZ solution for different throughput levels (25Mbps, 200Mbps, 1Gbps, 5Gbps) and Image types (Good/Better/Best)
Updates to 4 templates for the auto scale LTM CFT in the AWS Marketplace to use the latest CFTs
Released on 8/28/17
v2.5.1
This minor release contained an update to the BIG-IP AMIs for the experimental, full stack auto scale WAF solution for AWS security competency evaluation.
Released on 8/15/17
v2.5.0
*Licensing via BIG-IQ: Many of the AWS templates already supported this feature, and this release added BIG-IQ licensing to the 3 NIC template and the 2 NIC cluster across availability zones.
*BIG-IQ 5.2 and 5.3 support: Release 5 adds support for licensing BIG-IP VEs with BIG-IQ versions 5.2 and 5.3. Previously only 5.0 and 5.1 were supported.
*Service Discovery: AutoScale WAF and AutoScale LTM now support pool member discovery through tags. Customers will now be able to tag any interface or VM in AWS and have the BIG-IP automatically add those services as BIG-IP pool members. With frictionless bring-up of BIG-IP we now have added hands-off service management.
*Cloud WAF (AutoScale ASM): Improvements to our Auto Scale ASM solution, including v13.0 support and service discovery. This template will also be available as an AWS Marketplace offering; the update has been submitted to AWS and will be available once AWS approve the release.
*Updates to 1 NIC and 2 NIC templates: Updates and bug fixes to the standalone 1 NIC and 2 NIC templates.
Released on 8/11/17
v2.4.4
This release contained the following changes:
Experimental full stack auto scale WAF Released this experimental template for AWS security competency evaluation.
Bug fixes for the supported auto scale WAF solution, including:
- Bug#674703 Auto scale BIG-IP fails to join cluster due to faulty AWS Security Group
- Bug#674736 Event Logging disabled in auto scale WAF solution
- Bug#675533 AWS Security Group inbound rule for port 4353 needs a better source than anywhere.
Updated README file for the cluster HA across AZs CFT to correct Bug#676722, an inaccurate VPC prerequisite.
Released on 8/3/17
v2.4.3
This release contained AWS marketplace templates for the auto scale LTM solution.
This was released on 7/14/17
v2.4.2
This release contained the following changes:
Licensing from BIG-IQ License Manager BIG-IQ licensing was reintroduced in this release and is supported on the 1 NIC, 2 NIC, and 2 NIC cluster in the same AZ CFT templates. Also released 13 experimental CFTs with the same functionality.
This was released on 6/30/17
v2.4.1
This minor release temporarily removed the option to license BIG-IP VEs with the BIG-IQ.
This was released on 6/23/17