The documentation set for this product strives to use bias-free language. For the purposes of this documentation set, bias-free is defined as language that does not imply discrimination based on age, disability, gender, racial identity, ethnic identity, sexual orientation, socioeconomic status, and intersectionality. Exceptions may be present in the documentation due to language that is hardcoded in the user interfaces of the product software, language used based on RFP documentation, or language that is used by a referenced third-party product. Learn more about how Cisco is using Inclusive Language.
This chapter contains the following sections:
Cisco UCS Director supports the creation and monitoring of F5 load balancers.
Although load balancing may be prevalent in the routing environment, it is also of growing importance in the virtual networking and VM environment. Server load balancing is a mechanism for distributing traffic across multiple virtual servers, offering high application and server resource utilization.
Server load balancing (SLB) is the process of deciding to which server a load-balancing device should send a client request for service. For example, a client request can consist of an HTTP GET for a web page or an FTP GET to download a file. The job of the load balancer is to select the server that can successfully fulfill the client request and do so in the shortest amount of time without overloading either the server or the server farm as a whole.
Depending on the load-balancing algorithm or predictor that you configure, the F5 BIG-IP performs a series of checks and calculations to determine the server that can best service each client request. F5 BIG-IP bases server selection on several factors, including the server with the fewest connections regarding load, source or destination address, cookies, URLs, or HTTP headers.
A high-level process flow of load balancing is as follows:
A client attempts to connect with a service on the load balancer.
The load balancer accepts the connection.
The load balancer decides which host should receive the connection and changes the destination IP address (or port) in order to match the service of the selected host.
The host accepts the load balancer's connection and responds to the original source, to the client (through its default route), and to the load balancer.
The load balancer acquires the return packet from the host and changes the source IP (or port) to correspond to the virtual server IP and port, and forwards the packet back to the client.
The client receives the return packet, assuming it came from the virtual server, and continues the rest of the process.
Cisco UCS Director enables the management, orchestration, and monitoring of the F5 load balancer. Following is a summary of the crucial processes:
Adding the F5 load balancer is added to Cisco UCS Director as a managed element triggers Cisco UCS Directortask inventory collection. The polling interval configured on the System Tasks tab specifies the frequency of inventory collection.
After the F5 is added to the Pod, it is listed with all other components of the pod environment at the account level. To see the F5 component information, navigate to
.There are two ways to implement load balancing on an F5 device using Cisco UCS Director:
Use an iApps (BIG-IP) application service.
iApps application templates let you configure the BIG-IP system for your HTTP applications, by functioning as an interface to consistently deploy, manage, and monitor your servers. You can use default iApps templates or create and customize a template to implement load balancing on the F5 device.
Use Cisco UCS Director to:
Cisco UCS Director includes an F5 BIG-IP workflow task to aid in connecting to the Load Balancer using the Workflow Designer. The crucial workflow tasks are:
Allocate Container VM Resources
Provision Container - Network
Provision Container - VM
Re-Synch Container - VMs
Setup Container Gateway
Setup Container F5 Load Balancer
Send Container Email
Note | Only the task titled "Setup Container F5 Load Balancer" is unique in this F5 workflow. This F5 task was recently added to Cisco UCS Director container support. The other tasks previously existed, and are used in other workflows. Two other workflows that aid in the construction of load balancing application containers are Fenced Container Setup - ASA Gateway and Fenced Container Setup. |
Tip | The Setup Container Load Balancer task is provided for manual creation of the application service. This task is integrated with the Fenced Container Setup-ASA Gateway task to create an F5 load balancing application container. |
Cisco UCS Director can create an application container that provides F5 load balancing properties to the contained VMs. The Cisco UCS Director process workflow is summarized below:
Note | Configuring the VLAN and NAT settings in the gateway, as well as related network settings in the F5 device, cannot be performed using Cisco UCS Director as part of F5 application container support. This particular automation process will be addressed in an upcoming release of Cisco UCS Director. |
In order to create a virtual server that supports load balancing, first add a network element in Cisco UCS Director. After a Load Balancer is added as a network element in Cisco UCS Director, it appears under the Managed Network Element tab.
You must be logged in to the appliance to complete this task.
Adding the F5 Load Balancer triggers the system task inventory collection. The polling interval configured on the System Tasks tab specifies the frequency of inventory collection.
What to Do Next
To modify or edit a virtual server, choose the server, then click the Modify button. To remove a virtual server, choose the server, then click the Delete button.
Step 1 | On the menu bar, choose Policies > Application Containers. | ||||||||||
Step 2 | Click the F5 Load Balancer Policies tab. | ||||||||||
Step 3 | Click (+) Add Policy. | ||||||||||
Step 4 | In the
Add F5
Load Balancer Policy screen , complete the following fields:
| ||||||||||
Step 5 | Click Select. | ||||||||||
Step 6 | Click Next. | ||||||||||
Step 7 | Click Submit. |
Create a virtual infrastructure policy.
Step 1 | From the menu bar, choose Policies > Application Containers. | ||||||||||
Step 2 | Click the Virtual Infrastructure Policies tab. | ||||||||||
Step 3 | Click (+) Add Policy. | ||||||||||
Step 4 | In the
Virtual
Infrastructure Policy Specification pane, complete the following:
| ||||||||||
Step 5 | Click Next. | ||||||||||
Step 6 | In the
Virtual
Infrastructure Policy - Fencing Gateway pane, complete the
following:
| ||||||||||
Step 7 | Click Next. | ||||||||||
Step 8 | In the
Virtual
Infrastructure Policy - Fencing Load Balancing pane, complete the
following:
| ||||||||||
Step 9 | Click Next. | ||||||||||
Step 10 | Click Submit. |
Configure the Tiered Application Gateway Policies.
Step 1 | On the menu bar, choose Policies > Application Containers. | ||||||||||||||||||
Step 2 | Click the Tiered Applications Gateway Policies tab. | ||||||||||||||||||
Step 3 | Click (+) Add Policy. | ||||||||||||||||||
Step 4 | In the
Add
Gateway Policy dialog box, complete the following fields:
| ||||||||||||||||||
Step 5 | Click Next. | ||||||||||||||||||
Step 6 | In the
Add
Gateway Policy dialog box, complete the following fields for the
Linux gateway selection (if applicable):
| ||||||||||||||||||
Step 7 | In the
Add
Gateway Policy screen , complete the following fields for the Cisco
ASA (if applicable) selection:
| ||||||||||||||||||
Step 8 | In the
Add
Gateway Policy screen , complete the following fields for the Cisco
ASAv (if applicable) selection:
| ||||||||||||||||||
Step 9 | Click Next. | ||||||||||||||||||
Step 10 | Click Submit. |
Note | This procedure does not create an updating template. If you change the templates, the template is applied only to the newly created containers from that template. With this template you can create application containers for use in a variety of networks (including DFA Networks). |
Create an application container policy.
Step 1 | On the menu bar, choose . | ||||||||||||||||||||||||||
Step 2 | Click the Application Container Templates tab. | ||||||||||||||||||||||||||
Step 3 | Click
Add
Template. The
Application Container Template screen appears.
Complete the following fields:
| ||||||||||||||||||||||||||
Step 4 | Click Next. | ||||||||||||||||||||||||||
Step 5 | The
Application Container Template - Select a Virtual
infrastructure policy screen appears. Complete the following
selection:
| ||||||||||||||||||||||||||
Step 6 | Click Next. The
Application Container: Template - Internal Networks
screen appears.
You can add and configure multiple networks for a container. These networks are applicable to the VM that is provisioned using this template. | ||||||||||||||||||||||||||
Step 7 | Click the
(+) Add
icon to add a network. The
Add
Entry to Networks dialog box appears. Complete the following
fields:
| ||||||||||||||||||||||||||
Step 8 | Click
Submit.
Next, you can add and configure the VM that will be provisioned in the application container. | ||||||||||||||||||||||||||
Step 9 | Click OK. | ||||||||||||||||||||||||||
Step 10 | Click
the Add (+)
icon to add a VM. The
Add
Entry to Virtual Machines screen appears. Complete the following
fields:
| ||||||||||||||||||||||||||
Step 11 | Click Next. | ||||||||||||||||||||||||||
Step 12 | (Optional)Click the
Add
(+) icon to add a new (multiple) VM network interface. Complete the
following fields:
| ||||||||||||||||||||||||||
Step 13 | In the
Application Container Template - F5 Application
Service screen, complete the following fields:
| ||||||||||||||||||||||||||
Step 14 | Click Next. | ||||||||||||||||||||||||||
Step 15 | The Application Container
Template - Deployment Policies screen appears.
| ||||||||||||||||||||||||||
Step 16 | Click Next. The
Application Container: Template - Options screen
appears.
You can select options to enable or disable certain privileges for the self-service end user. Complete the following fields:
| ||||||||||||||||||||||||||
Step 17 | Click
Next. The
Application Container: Template - Setup Workflows
screen appears. Complete the following field:
| ||||||||||||||||||||||||||
Step 18 | Click
Next to complete the creation of the application
container template and review the
Summary screen.
| ||||||||||||||||||||||||||
Step 19 | Click Submit. |
Note | An application container must use a unique VLAN for its own network. There can be no other port group on (VMware) vCenter using it. |
Step 1 | Choose . | ||||||||||||||||||||||||||||||||||||||||||||||
Step 2 | Click the Application Container Templates tab. | ||||||||||||||||||||||||||||||||||||||||||||||
Step 3 | Choose a template. | ||||||||||||||||||||||||||||||||||||||||||||||
Step 4 | Click Create Container. | ||||||||||||||||||||||||||||||||||||||||||||||
Step 5 | In the
Create
container from template dialog box, complete the following fields:
| ||||||||||||||||||||||||||||||||||||||||||||||
Step 6 | Click
Submit. The
Submit
Result dialog box appears.
| ||||||||||||||||||||||||||||||||||||||||||||||
Step 7 | Click OK.
| ||||||||||||||||||||||||||||||||||||||||||||||
Step 8 | Click the Application Containers tab. The new container appears in the Application Containers pane. |
Note | F5 Load Balancing is only supported on Fenced Virtual Containers. |
Step 1 | On the menu bar, choose Organization >Service Request. |
Step 2 | Click on the Advanced Filter button (far right side of interface). |
Step 3 | Choose Request Type from the Search drop-down list. |
Step 4 | Enter Advanced in the Test field. |
Step 5 | Click Search. |
Step 6 | Click the Fenced Container Setup workflow. |