BIG-IP Next: Securing and Delivering the Next Application Era

Recognizing that the complexity and magnitude of today's application and threat landscape will only rise in years to come, the core tenets for BIG-IP Next are that of simplification, security, and scale. To deliver against these principles, the software fabric of BIG-IP has undergone another significant refactoring, whereby TMOS' monolithic framework has been fragmented into several interconnected, containerized components that plug, play, and scale independently. This architectural shift not only yields the inherent benefits of containerization-greater failure isolation, superior scalability, and accelerated software development to name a few-but also grants the opportunity for various systemic improvements:

First, BIG-IP Next greatly simplifies and accelerates application deployments by shifting to an entirely declarative configuration framework, leveraging reusable and readily automatable API's (AS3) and configuration templates. This approach, combined with BIG-IP Next's modern and highly intuitive user interface, abstracts away much of the complexity associated with configuring app services and allows application deployments to be performed in minutes or even seconds.

Second, BIG-IP Next streamlines the software upgrade and patching experience. The days of upgrades requiring lengthy maintenance windows and hours of application downtime are long gone; major software upgrades can now be completed in a matter of minutes while upgrades and patches to components not in the data path may be possible with zero downtime. Further, cutting-edge security capabilities and software patches will be released much faster owing to BIG-IP Next's accelerated software development process, meaning users will be able to protect against vulnerabilities and evolving cyber threats quicker than ever before.

Third, BIG-IP Next boasts a completely rearchitected control plane with dedicated and scalable compute resources designed to handle the most extensive, complex, and dynamic application portfolios the future has in store. Capable of supporting millions of configuration objects, transacting many more API requests per second, and implementing configuration updates in single-digit milliseconds, BIG-IP Next's control plane is built for extreme performance and resiliency in highly automated environments.

Fourth, BIG-IP Next shifts to a simplified operating model that's better suited for the day-to-day operations of distributed and complex application portfolios. Every BIG-IP Next deployment now consists of two essential components: BIG-IP Next Instances and the BIG-IP Next Central Manager. While the BIG-IP Next Instances provide an enforcement point for application delivery and security policies in the application data path, the BIG-IP Next Central Manager provides a single point of control for managing the end-to-end lifecycle of hundreds of BIG-IP Next Instances and the apps they support. With granular and portfolio-wide observability, app deployment, configuration change automation, certificate management, iHealth integration, and so much more now possible through a single pane of glass, BIG-IP Next Central Manager significantly reduces operational complexity.

Although with major improvements, BIG-IP Next is still in many ways the same solution that users know, love, and have trusted for decades-simply modernized and optimized for the future. It carries forward the majority of existing functionality including its high-performance data plane, rich protocol support, advanced security functions, and automation capabilities. iRules certainly aren't going anywhere either with their creators now benefitting from an optimized iRules editor, iRules versioning, and the ability to migrate existing iRules to BIG-IP Next.

Existing BIG-IP application configurations can also be easily migrated over to BIG-IP Next using the BIG-IP Next Central Manager Migration Service-an integrated tool capable of modifying BIG-IP configurations to be compatible with BIG-IP Next. For F5 hardware users, the multi-tenant nature of F5's next-generation hardware systems makes migrations even easier by permitting BIG-IP TMOS and BIG-IP Next Instances to run side-by-side on the same device and allowing apps to be gradually migrated at the users desired pace.

As of today, BIG-IP Next supports VELOS and select rSeries systems, as well as VMware and KVM environments via the BIG-IP Next Virtual Edition. Additional rSeries systems and cloud deployment locations such as Amazon AWS, Microsoft Azure, and Google Cloud will also be supported shortly.

If you're interested in learning more about how BIG-IP Next can simplify your operations, strengthen your security posture and help you scale throughout the next application era, then please check out this solution overview and register for our upcoming webinar: Modern App Delivery & Security with BIG-IP Next. If you're ready to start kicking the tires, then simply reach out to your F5 account manager or visit MyF5.com to obtain a free trial of BIG-IP Next today.

Public link

Please use the above public link if you want to share this noodl on another website.