NetDevOps an overview

I. Problem Statements

Problem 1 - Monitoring

An engineer would like to have his monitoring stacks automatically monitor new devices everytime he add them into the network.

Problem 2 - Configuration

An engineer wants add new commands to all 300 devices. Currently she tests the commands in a few devices and manually login to all remaining devices to add them one-by-one.

Problem 3 - Auditing

A network manager would like to ensure that every active interface in her 300 switches are for legitimate uses.

II. Infrastructure as Code

Values borrowed from DevOps concepts

  • Changes are fact of life
  • Small and frequent changes
  • Continuous integration and deployment
  • Test often
  • Continuous feedback and improvement

III. Tools

Single Source of Truth

  • Represents the desired state of a network versus its operational state
  • Designated authority over a specific data domain
    • Where to find the “correct” value for a piece of data
  • Typically includes:
    • IP address management (IPAM) - IP networks and addresses, VRFs, and VLANs
    • Equipment racks - Organized by group and site
    • Devices - Types of devices and where they are installed
    • Connections - Network, console, and power connections among devices
    • Virtualization - Virtual machines and clusters
    • Data circuits 
    • Netbox or Nautobot

      Labs

      Nowadays a network lab no longer requires huge resources enough to power a NASA space program as before.
      • VM: GNS3 or EVE (Emulated Virtual Environment Next Generation)
      • Docker: ContainerLab
      • Cloud: ARISTA, Cisco DevNet and Juniper Networks

      Develop

      Coding, scripting, and programming.
      • Editors: VSCode, Vim and Sublime Text
      • Languages: Phython and Go
      • Libaries: Netmiko, NAPALM, Nornir and Scrapli

      Review

      Version control, peer review, and repository.
      • GitLab
      • GitHub

      Test

      pyATS, Batfish and Scrapli

      Release

      Automated deployment, configuration management, and provisioning.
      • Nornir
      • Ansible
      • Chef
      • Saltstack

      Observe

      Service metric and streaming telemetry monitoring and observability stack.
      • Data schema/models: Vendor's Native (YANG models) and OpenConfig YANG models
      • Transports/Protocol: SNMP, Netconf, gNMI, RestConf
      • Collectors: Telegraf
      • Monitoring tools/TSDB: Prometheus, Elasticsearch and InfluxDB
      • Logging: GrayLog and Grafana loki
      • Visualization: Grafana and Kibana

      Alert

      Integration of alert and notifications with chat apps via webhooks or APIs.
      • Prometheus AlertManager
      • Grafana Alert
      • Phython

      IV. Back to the problem with solutions

      Problem 1 - Monitoring

      An engineer would like to have his monitoring stack automatically monitor new devices everytime he add them into the network.
      Rough idea:
      Manually add new device to Source of Truth Nautobot which will make API call to a webhook custom script which will generate a new Telegraf config to monitor the new device and make API update request to Prometheus and Grafana.

      Problem 2 - Configuration

      An engineer wants add new commands to all 300 devices. Currently she tests the commands in a few devices and manually login to all remaining devices to add them one-by-one. 
      Rough idea:
      Ensure source of truth Nautobot is updated with 300 devices. Use Nornir framework with dynamic inventory from Nautobot to send the commands via Scrapli to all devices at once.

      Problem 3 - Auditing

      A network manager would like to ensure that every active interface in her 300 switches are for legitimate uses.
      Rough idea:
      Ensure source of truth Nautobot is updated with corrected desired state. Use Batfish with dynamic inventory from Nautobot to validate all interface configuration of all devices. If the configs in the device differ from the source of truth, Batfish will display the diff.

      V. So Where do we start?

      We must learn to crawl before we can walk. 

      - From an expert somewhere

      One possible path

      • Get a Github account
      • Understand some basic Data Structure and Algorithm
      • Learn Python syntax and fundamentals
      • Understand concept of APIs and Distributed System Architecture
      • Try simple library such as Netmiko
      • Try framework such as Nornir with static inventory
      • Upgrade Nornir with dynamic inventory from Netbox
      Try non-destructive tasks such as monitoring and auditing before making changes.

       

      Resources & who to follow

      NetDevOps_KH

      Cambodia’s based Network Engineering community Telegram group: t.me/NetDevOps_KH

      Source: 
      by Vireak Ouk
      some kind of engineer

      25 Sep 2021 


      Comments

      Post a Comment

      Popular posts from this blog

      Telegram Desktop Keyboard Shortcuts (hotkeys)

      Command ( Shortcut ) Move to next chat ( Ctrl + Tab) Move to next chat ( Ctrl + PageDown) Move to next chat  ( Alt + Arrow Down) Move to previous chat ( Ctrl + Shift + Tab) Move to previous chat ( Ctrl + PageUp) Move to previous chat ( Alt + Arrow Up) Go to Previous Folder ( Ctrl + Shift + Arrow Up) Go to Next Folder  ( Ctrl + Shift + Arrow Down) Search selected chat  ( Ctrl + F) Exit selected chat and search Telegram  ( Esc ) Exit display of current chat/channel   ( Esc ) Delete currently selected message   ( Delete ) Quit Telegram  ( Ctrl + Q ) Lock Telegram (if Local Password is set)  ( Ctrl + L ) Iconify (Minimize) Telegram  ( Ctrl + M ) Iconify (Minimize) Telegram to System Tray  ( Ctrl + W ) Edit Previous Message ( Arrow Up ) Start New Line in Input Area  ( Ctrl + Enter or Shift + Enter ) Move Cursor to Start of Multi-line Message  ( Ctrl + Home ) Make Text Italic  ( Ctrl + I ) Make Text Bold   ( Ctrl + B ) Make Text Underline   ( Ctrl + U ) Make Text Striketrough   ( Ctrl + Sh
      Read more

      Lesson 2: Define subnet in network topology and add static route to Router || IP Network

      Image
        Lesson 2: Define subnet in network topology and add static route to Router || IP Network 1. How to define subnet in the network? 2. How to add static route in Router? Ping from R1 to R3 and Ping from PC1 to PC2. Commands that i have use in this lab: ping x.x.x.x show ip int br sh run show ip route x.x.x.x show ip route conf t ip route x.x.x.x x.x.x.x x.x.x.x end wr If you have any questions, please leave a comment.
      Read more

      Basic linux command line interface

      Image
      What is Linux?   Linux is the best-known and most-used open-source operating system. As an operating system, Linux is software that sits underneath all of the other software on a computer, receiving requests from those programs and relaying these requests to the computer’s hardware. Source: https://opensource.com/resources/linux What is Command-Line Interface (CLI)?     Command-line interface (CLI) is a text-based interface that is used to operate software and operating systems while allowing the user to respond to visual prompts by typing single commands into the interface and receiving a reply in the same way. Source: https://www.techopedia.com/definition/3337/command-line-interface-cli Command Line PWD     The PWD utility writes the absolute pathname of the current working directory to the standard output. Command Line  LS ls is a Linux shell command that lists directory contents of files and directories. Command Line  CD cd command in linux known as change directory command. It
      Read more